Banking and Finance


  • Adventures in MQTT Part II: Identifying MQTT Brokers in the Wild

    November 18, 2020

    The use of publicly accessible MQTT brokers is prevalent across numerous verticals and technology fields. I was able to identify systems related to energy production, hospitality, finance, healthcare, pharmaceutical manufacturing, building management, surveillance, workplace safety, vehicle fleet management, shipping, construction, natural resource management, agriculture, smart homes and far more. Hackers have been sounding alarms about this ...

  • Singapore moots mandatory offsite verification for financial institutions

    November 10, 2020

    Singapore is considering the need for various personal information, such as password and biometrics, to facilitate “non-face-to-face” verification for financial services. This comes amidst a rise in impersonation scam cases and risks of personal data theft. In a consultation paper released Tuesday, the Monetary Authority of Singapore (MAS) mooted the mandatory use of at least one ...

  • Wroba Mobile Banking Trojan Spreads to the U.S. via Texts

    October 30, 2020

    The Wroba mobile banking trojan has made a major pivot, targeting people in the U.S. for the first time. According to researchers at Kaspersky, a wave of attacks are taking aim at U.S. Android and iPhone users in an effort that started on Thursday. The campaign uses text messages to spread, using fake notifications for “package ...

  • US focused on disrupting finances for Somalia’s al-Shabab

    October 29, 2020

    UNITED NATIONS — The United States strongly backed efforts to disrupt the illegal financing methods used by Somalia’s al-Shabab extremist group, which according to U.N. experts raised more than the $21 million it spent last year on fighters, weapons and intelligence. U.S. Ambassador Kelly Craft told the Security Council on Wednesday the Trump administration is committed ...

  • 10 ATMs damaged amid overnight unrest in Philadelphia

    October 27, 2020

    Police say 10 ATMs were damaged late Monday and early Tuesday in Philadelphia. Police said officers responded to the 600 block of Wendover Street, in Philadelphia’s Manayunk section, at about 11:50 p.m. Monday after an ATM exploded at Dalessandro’s Steaks. “The loud boom woke me up,” said area resident Kristen Mckernan. It was not clear if any cash ...

  • Vizom malware uses remote overlay attacks to hijack your bank account

    October 19, 2020

    Researchers have uncovered a new form of malware using remote overlay attacks to strike Brazilian bank account holders. The new malware variant, dubbed Vizom by IBM, is being utilized in an active campaign across Brazil designed to compromise bank accounts via online financial services. On Tuesday, IBM security researchers Chen Nahman, Ofir Ozer, and Limor Kessem said ...

  • Chicago: Trio used explosive device in attempted Lake View ATM burglary

    October 14, 2020

    Authorities are looking for three men suspected of using an explosive device to try and break into an ATM in Lake View over the summer. On June 14, one of the suspects allegedly planted an improvised explosive device next to a drive-thru ATM at a Fifth-Third Bank branch at 3179 N. Clark St., the FBI said ...

  • US brokerage firms warned of widespread survey phishing attacks

    October 7, 2020

    The U.S. Financial Industry Regulatory Authority (FINRA) has issued a notice warning member brokerage firms of widespread phishing attacks using surveys to harvest information. FINRA is a non-profit organization and self-regulatory body authorized by the U.S. government to regulate exchange markets and brokerage firms. According to FINRA, the organization supervises over 624,000 brokers across the country and ...

  • Mispadu Banking Trojan Resurfaces

    September 22, 2020

    Recent spam campaigns leading to URSA/Mispadu banking trojan (detected by Trend Micro as TrojanSpy.Win32.MISPADU.THIADBO) have been uncovered, as reported by malware analyst Pedro Tavares in a Twitter post and by Seguranca Informatica in a blog post. Mispadu malware steals credentials from users’ systems. This attack targets systems with Spanish and Portuguese as system languages. It is ...

  • Dirty money: World’s largest banks failing to stop money laundering on vast scale

    September 21, 2020

    Massive sums of allegedly dirty money have flowed for years through some of the world’s largest banking institutions, said an international journalism investigation published Sunday, which denounced shortcomings in sector regulations. “Profits from deadly drug wars, fortunes embezzled from developing countries, and hard-earned savings stolen in a Ponzi scheme were all allowed to flow into and ...

  • FBI says credential stuffing attacks are behind some recent bank hacks

    September 14, 2020

    The FBI has sent a private security alert to the US financial sector last week warning organizations about the increasing number of credential stuffing attacks that have targeted their networks and have led to breaches and considerable financial losses. Credential stuffing is a relatively new term in the cyber-security industry. It refers to a type of automated attack ...

  • Chilean bank shuts down all branches following ransomware attack

    September 7, 2020

    BancoEstado, one of Chile’s three biggest banks, was forced to shut down all branches on Monday following a ransomware attack that took place over the weekend. “Our branches will not be operational and will remain closed today,” the bank said in a statement published on its Twitter account on Monday. Details about the attack have not been ...

  • Python-based Spy RAT Emerges to Target FinTech

    September 3, 2020

    The Evilnum group, which specializes in targeting financial technology companies, has debuted a new tool: A Python-based remote access trojan (RAT), dubbed PyVil. The malware’s emergence dovetails with a change in the chain of infection and an expansion of infrastructure for the APT. According to researchers at Cybereason, PyVil RAT enables the attackers to exfiltrate data, ...

  • JP Morgan will adopt remote working on a permanent basis

    August 27, 2020

    One of the world’s largest investment banks, JP Morgan, has decided to embrace remote working on a permanent basis, in a move that could send ripples through the business world. Once the Covid-19 pandemic is over, the company’s 60,000 employees will not be required to return to the office full time. Instead, they will be given ...

  • New Zealand stock exchange halted trading after DDoS attacks

    August 26, 2020

    New Zealand’s stock exchange (NZX) has been impacted by distributed denial-of-service (DDoS) attacks during the last two days, forcing it to shut down trading until the connectivity issues were resolved. NZX operates New Zealand’s capital, risk, and commodity markets, and it supplies market information including real-time stock quotes, market data and news. The stock market announced around ...

  • US government warns of North Korean hackers targeting banks worldwide

    August 26, 2020

    North Korean hackers tracked as BeagleBoyz have been using malicious remote access tools as part of ongoing attacks to steal millions from international banks according to a joint advisory issued today by several U.S. Government agencies. The joint release says that North Korea’s BeagleBoyz hacking group has once again started robbing banks through remote internet access ...

  • New FritzFrog P2P botnet has breached at least 500 enterprise, government servers

    August 19, 2020

    A P2P botnet newly-discovered by researchers has struck at least 500 government and enterprise SSH servers over 2020. On Wednesday, cybersecurity firm Guardicore Labs published research into FritzFrog, a peer-to-peer (P2P) botnet that has been detected by the company’s sensors since January this year. According to researcher Ophir Harpaz, FritzFrog has attempted to brute-force SSH servers belonging ...

  • Capital One fined $80m for shoddy public cloud security

    August 7, 2020

    Capital One must pay a trivial $80m fine for its shoddy public cloud security – yes, the US banking giant that was hacked last year by a miscreant who stole personal information on 106 million credit-card applicants in America and Canada. That swiped data included 140,000 US social security numbers and 80,000 bank account numbers, we’re ...

  • Diebold Nixdorf warns of a new class of ATM ‘black box’ attacks across Europe

    July 16, 2020

    ATM maker Diebold Nixdorf is warning banks of a new type of ATM “black box” attack that was recently spotted used across Europe. ATM “black box” attacks are a type of jackpotting attack — when cybercriminals make an ATM spit out cash. A jackpotting attack can be executed with malware installed on an ATM, or by ...

  • Brazil’s Banking Trojans Go Global

    July 15, 2020

    Malware that is typically used in Brazil is expanding its geography, targeting users in North America, Europe and elsewhere in Latin America. Banking trojans, which steal online banking logins and other financial credentials from unsuspecting victims, are  fairly common – but the more sophisticated examples are often pioneered in Brazil. According to Kaspersky researchers, four Brazilian banking-trojan families ...