Skip to main content

Tag: banking

19 articles

Bank teller sits at desk with laptop, hinting at security vulnerability.

Banks Expose Accounts to Thieves by Making MFA Optional

Leaving multi-factor authentication optional has left countless bank accounts vulnerable to theft, with devastating consequences - just ask the 84-year-old victim who lost nearly $30,000 when thieves exploited this security gap. By making MFA optional, banks are inadvertently rolling out the red carpet for thieves.

Analyst 207
Rack of networking equipment in a brightly-lit municipal network closet.

Fortinet and Ivanti Exploits Fuel LATAM Infrastructure Attacks

In a shocking revelation, a coordinated campaign dubbed Operation Escaneo has been exposed, targeting critical infrastructure across Mexico, Ecuador, and Portugal, with a staggering 3,708 sessions recorded over just 13 days. The attackers exploited vulnerabilities in Fortinet and Ivanti perimeter appliances to gain entry into government, tax authorities, utilities, transport, telecoms, and banks.

Analyst 207
Person sits at laptop in European café, face downcast, with blurred cityscape and bank storefront in background.

Android Malware NFCShare Targets Europe Banks via GitHub Updates

Malicious actors are using GitHub to spread new variants of the NFCShare Android malware, disguising them as banking app updates to target customers of European banks. Victims are first lured into downloading the malware through phishing sites that mimic real banks, where they're prompted to install a fake update.

Analyst 207
Financial sector setting with subtle tech integration, conveying disruption.

AI Botnets Fuel DDoS Surge in Financial Sector

The financial sector saw a staggering 2.41 billion network- and transport-layer denial-of-service attacks in 2025, with banking bearing the brunt, accounting for 60% of total web attacks and over 80% of API-related incidents. TurboMirai, a powerful AI botnet, was a key driver of this alarming surge, fueling attacks that lasted a whopping 738% longer than usual.

Analyst 207
Bank compliance investigation room with laptop showing AI agent interface and financial documents.

FIS and Anthropic Unveil AI to Accelerate Money Laundering Probes

Imagine having an AI-powered ally that supercharges your money laundering investigations, automatically gathering evidence, detecting patterns, and prioritizing case files in minutes - not days. FIS and Anthropic have joined forces to bring you the Financial Crimes AI Agent, revolutionizing banking's most costly compliance challenge.

Analyst 207
Person in a suit sits at desk surrounded by laptop screens, face obscured, hands clasped in worry.

Fraud Detection Lags as Losses Mount Despite Heavy Tech Investments

Despite pouring money into cutting-edge fraud detection tools and analytics, financial institutions are still struggling to outsmart scammers, with losses mounting at an alarming rate. The disconnect between heavy tech investments and rising fraud losses reveals a pressing need for a new approach to scam prevention.

Analyst 207
Cracked windowpane with sharp glass shards reflecting cityscape glow, symbolizing security breach and vulnerability.

JanelaRAT Malware Strikes Latin American Banks with 14,739 Attacks

Latin American banks faced a staggering 14,739 attacks from the JanelaRAT malware in 2025, putting sensitive information at risk and raising the stakes for financial institutions and their customers. This surge in attacks highlights the growing threat of JanelaRAT, a modified malware family that continues to target banks in countries like Brazil and Mexico.

Analyst 207
Rusty old lock in foreground with blurred futuristic cityscape at dusk in background.

Enterprises urged to accelerate post-quantum transition planning

Don't wait until it's too late - experts warn that enterprises must start planning and executing their transition to post-quantum cryptography now to stay ahead of the curve. By taking a proactive approach, organizations can demystify this complex technical shift and turn it into a manageable operational task.

Analyst 207
Banks Overhaul Anti-Money Laundering as Instant Payments Scale

Banks Overhaul Anti-Money Laundering as Instant Payments Scale

As instant payments scale, banks are racing to overhaul their anti-money laundering strategies to keep up with the lightning-fast pace of transactions that clear in the blink of an eye. With the Federal Reserve's recent move to lift transaction limits to $10 million, financial institutions must now make high-stakes AML decisions in real-time.

Analyst 207
Critical Lloyds IT Glitch Exposes Alarming Data of 500K Customers

Critical Lloyds IT Glitch Exposes Alarming Data of 500K Customers

A recent IT glitch at Lloyds exposed the sensitive data of nearly 500,000 customers, highlighting the alarming vulnerabilities of our increasingly interconnected world. This shocking incident serves as a wake-up call, reminding us that even the most secure systems can be breached, and our personal data can be put at risk.

Analyst 207
UK Report: Stunning liability rules could be costly

UK Report: Stunning liability rules could be costly

What if the software that runs hospitals, banks and supply chains could be held legally liable for every flaw? A new UK report urges clearer legal liability to force better security and faster fixes — but warns those protections could be costly, reshape markets and squeeze smaller vendors.

Analyst 207
Android banking trojan: Stunning, Dangerous Klopatra

Android banking trojan: Stunning, Dangerous Klopatra

A new Android trojan called Klopatra is quietly hijacking phones with a hidden VNC channel—letting attackers watch and control screens to bypass MFA and steal funds, especially across Spain and Italy. Keep your device updated and apps from official stores, and banks should adopt out‑of‑band confirmations and behavioral analytics to block these stealthy attacks.

Analyst 207
Android remote access trojan: Exclusive Risky Threat

Android remote access trojan: Exclusive Risky Threat

“If you can see nothing, they can take everything” — Klopatra is a stealthy new Android remote-access trojan that quietly hijacks phones to steal banking credentials, intercept one-time codes, and automate fraudulent transactions. Stay vigilant: only install apps from trusted stores, scrutinize accessibility and overlay permissions, and push behavioral mobile security and out-of-band authentication to blunt these targeted, modular attacks.

Analyst 207
major cyberattack: Shocking £206m Loss — Risky Fallout

major cyberattack: Shocking £206m Loss — Risky Fallout

After a major cyberattack forced the Co-op to isolate critical systems, the group now expects a £206m revenue hit — a sharp reminder that containing a breach can protect customers but comes with steep commercial costs.

Analyst 207
steal $130 million: Stunning Risky Heist Exposed

steal $130 million: Stunning Risky Heist Exposed

Sinqia, one of Brazil’s largest fintech providers, says it stopped an attempt to steal about $130 million from two B2B partners. The near‑heist shows how vulnerable software‑based vaults can be and why hardening third‑party financial systems is urgent.

Analyst 207
Hook Android Trojan: Stunning Dangerous Ransomware Threat

Hook Android Trojan: Stunning Dangerous Ransomware Threat

A new Hook Android Trojan variant now combines banking fraud with ransomware-style lockouts, letting attackers both steal credentials and hold phones hostage. Millions of users should tighten app sources, review permissions, and keep backups as defenders scramble to catch up.

Analyst 207
payment fraud: Stunning Surge Puts Consumers at Risk

payment fraud: Stunning Surge Puts Consumers at Risk

New York’s attorney general says Zelle’s bank owners and operator turned a handy, instant-pay system into a playground for scammers by prioritizing speed over safety, and now a lawsuit could force big banks to clean up their act. The case could redraw who’s liable for losses on real-time payment rails and push a rethink of convenience versus consumer protection.

Analyst 207
ERMAC v30 Exposed: Stunning Risky Banking Threat

ERMAC v30 Exposed: Stunning Risky Banking Threat

A public leak of ERMAC v3.0’s source code has pulled back the curtain on a sharper, more widespread Android banking trojan—revealing both powerful theft techniques and the operators’ sloppy mistakes that could help investigators. It’s a stark reminder that transparency can empower defenders, but also risks giving other crooks a head start if we don’t act fast.

Analyst 207
Employee Receives $920 for Credentials Linked to $140 Million Bank Heist

Employee Receives $920 for Credentials Linked to $140 Million Bank Heist

Employee awarded $920 for credentials tied to a $140 million bank heist, highlighting the risks of insider threats in the financial sector.

Analyst 207