Skip to main content

Tag: financial institutions

94 articles

Five cuffed individuals stand in a row in a neutral-colored institutional hallway.

UK Authorities Charge Five in Russian Coms Fraud Crackdown

In a major crackdown on Russian Coms Fraud, UK authorities have charged five individuals linked to a notorious platform that enabled scammers to hide their identities and swindle victims by impersonating trusted institutions. The platform, shut down in 2024, had been facilitating these deceitful calls since 2020.

Analyst 207
Bank teller sits at desk with laptop, hinting at security vulnerability.

Banks Expose Accounts to Thieves by Making MFA Optional

Leaving multi-factor authentication optional has left countless bank accounts vulnerable to theft, with devastating consequences - just ask the 84-year-old victim who lost nearly $30,000 when thieves exploited this security gap. By making MFA optional, banks are inadvertently rolling out the red carpet for thieves.

Analyst 207
Cloud computing setup with laptop and servers in a bright office, hint of phishing activity.

GitHub Phishing Kit Targets Mexican Banks via Cloud Services

A sneaky GitHub phishing kit called "GitBait" has been targeting customers of 12 Mexican banks for three years, cleverly using cloud services like GitHub Pages and Google Sheets to stay under the radar. This cunning operation relied on over 100 GitHub-hosted domains to steal credentials, making it a challenging case for investigators.

Analyst 207
Loan officer's workspace with laptop and papers, busy banking hall blurred in background.

Fraudsters Target Credit Unions with Structured Loan Scams

Fraudsters are now targeting credit unions with sophisticated loan scams, using stolen identities and social engineering to exploit lending workflows. In fact, auto lending fraud exposure is expected to hit $9.2 billion by 2025, making it a lucrative target for these scammers.

Analyst 207
Secure server room with rows of computer servers and restricted access controls.

DORA Mandates Credential Security as Financial Risk Control

What happens when a threat actor waltzes into your network with a legitimate username and password - can your controls stop them? With DORA now in effect, EU financial institutions must prioritize credential security as a critical risk control, shifting from best practice to binding regulation.

Analyst 207
Person in a suit sits at desk surrounded by laptop screens, face obscured, hands clasped in worry.

Fraud Detection Lags as Losses Mount Despite Heavy Tech Investments

Despite pouring money into cutting-edge fraud detection tools and analytics, financial institutions are still struggling to outsmart scammers, with losses mounting at an alarming rate. The disconnect between heavy tech investments and rising fraud losses reveals a pressing need for a new approach to scam prevention.

Analyst 207
Dimly lit room with laptop screen displaying fake online profile, surrounded by clutter and tangled cables, with blurred…

Interpol Warns of AI-Driven Fraud Surge

Get ready for a seismic shift in financial crime: Interpol warns that AI-driven fraud is set to explode, with losses already hitting $442 billion last year and AI-enhanced scams being over four times more profitable than traditional methods. The question is, are financial institutions prepared to outsmart an enemy that learns faster than they can adapt?

Analyst 207
Cracked windowpane with sharp glass shards reflecting cityscape glow, symbolizing security breach and vulnerability.

JanelaRAT Malware Strikes Latin American Banks with 14,739 Attacks

Latin American banks faced a staggering 14,739 attacks from the JanelaRAT malware in 2025, putting sensitive information at risk and raising the stakes for financial institutions and their customers. This surge in attacks highlights the growing threat of JanelaRAT, a modified malware family that continues to target banks in countries like Brazil and Mexico.

Analyst 207
Glowing spider web with laptop and smartphones symbolize AI-driven fraud networks in a dark cityscape.

Banks Urged to Unite Against AI-Driven Fraud Networks

Generative AI has created a haven for fraudsters, allowing them to organize and scale their operations like never before - and experts warn that banks must adapt quickly or risk being left behind. To stay ahead, financial institutions must unite against these AI-driven fraud networks and respond with the same level of sophistication.

Analyst 207
Fraudsters Exploit SMS Verification in Financial Fraud Schemes

Fraudsters Exploit SMS Verification in Financial Fraud Schemes

Think a simple text message with a one-time passcode is the ultimate security measure? Not quite - a recent report reveals that fraudsters are exploiting SMS verification to hijack accounts and siphon off funds.

Analyst 207
Banks Overhaul Anti-Money Laundering as Instant Payments Scale

Banks Overhaul Anti-Money Laundering as Instant Payments Scale

As instant payments scale, banks are racing to overhaul their anti-money laundering strategies to keep up with the lightning-fast pace of transactions that clear in the blink of an eye. With the Federal Reserve's recent move to lift transaction limits to $10 million, financial institutions must now make high-stakes AML decisions in real-time.

Analyst 207
Jackpotting Stunning Surge: FBI Warns of Costly Bank Losses

Jackpotting Stunning Surge: FBI Warns of Costly Bank Losses

When ATMs suddenly start spitting out cash, it’s not a glitch — it’s ATM jackpotting, and the FBI warns these coordinated attacks cost banks about $20 million in 2025 alone. As criminals automate exploits and prey on legacy systems, banks are racing to stop mass cash-outs and the costly fallout that follows.

Analyst 207
Operation Chargeback Exclusive: Devastating €300m Fraud

Operation Chargeback Exclusive: Devastating €300m Fraud

Operation Chargeback uncovers a devastating €300m fraud — an exclusive look at how investigators dismantled the scheme and what you need to know to protect yourself.

Analyst 207
PII and payment data: Stunning Risky Exposure Alert

PII and payment data: Stunning Risky Exposure Alert

About 180,000 records — including names and payment card data — were left exposed, turning everyday transactions into a potential headache for consumers and a regulatory and reputational crisis for businesses; monitor your accounts, enable alerts, and favor virtual or tokenized payment options while companies patch misconfigurations and tighten security.

Analyst 207
Android banking trojan: Stunning, Dangerous Klopatra

Android banking trojan: Stunning, Dangerous Klopatra

A new Android trojan called Klopatra is quietly hijacking phones with a hidden VNC channel—letting attackers watch and control screens to bypass MFA and steal funds, especially across Spain and Italy. Keep your device updated and apps from official stores, and banks should adopt out‑of‑band confirmations and behavioral analytics to block these stealthy attacks.

Analyst 207
Android remote access trojan: Exclusive Risky Threat

Android remote access trojan: Exclusive Risky Threat

“If you can see nothing, they can take everything” — Klopatra is a stealthy new Android remote-access trojan that quietly hijacks phones to steal banking credentials, intercept one-time codes, and automate fraudulent transactions. Stay vigilant: only install apps from trusted stores, scrutinize accessibility and overlay permissions, and push behavioral mobile security and out-of-band authentication to blunt these targeted, modular attacks.

Analyst 207
social engineering: Risky Tricks Exposed

social engineering: Risky Tricks Exposed

A clear, reader-friendly breakdown of a convincing phone scam that shows how faux authority, fake case numbers and offers of a “supervisor” trick people — plus the timeline, red flags, and simple steps you can use to avoid being fooled. Learn what habits and tech fixes really stop these attacks before they cost you time or money.

Analyst 207
artificial intelligence: Must-Have or Risky for Banks

artificial intelligence: Must-Have or Risky for Banks

UK banks are sprinting to unlock AI’s productivity and customer‑service gains while racing to prevent unvetted public models from exposing millions of customers, pushing firms to build private registries, tighter governance, and controlled sandboxes. The big question: can they innovate fast enough to reap AI’s benefits while keeping regulators and customers confident their data is safe?

Analyst 207
Scattered Spider Stunning Bank Breach — Risky Alert

Scattered Spider Stunning Bank Breach — Risky Alert

Think they’d really retired? Scattered Spider quietly retooled and hit a U.S. bank, proving public retirements can be misdirection and that banks must move beyond checklist security to stay ahead.

Analyst 207
insider data breach: Risky Fallout, Must-Have Fixes

insider data breach: Risky Fallout, Must-Have Fixes

FinWise Bank says an insider breach may have exposed data for about 689,000 customers — names, contact details and in some cases account info — and is working with law enforcement and cybersecurity experts to investigate. If you’re notified, act quickly: enroll in any monitoring offered, watch your accounts closely, and consider fraud alerts or a credit freeze to reduce identity-theft risk.

Analyst 207
scam camps: Shocking Risky Shift to Vulnerable Countries

scam camps: Shocking Risky Shift to Vulnerable Countries

As international crackdowns shutter traditional fraud hubs, organized scam camps are quietly relocating to countries with weak governance and porous oversight — making detection harder, amplifying harm to victims, and turning fragile communities into unwitting havens.

Analyst 207
fake IDs: Stunning Risky $9 Fraud Threat

fake IDs: Stunning Risky $9 Fraud Threat

Imagine buying a fake ID for less than a meal: investigators just shut down VerifTools, a sprawling $6.4M underground marketplace selling $9 forged IDs and KYC‑bypass tools, a wake-up call about how cheap, high-impact identity fraud has become.

Analyst 207
Hook Android Trojan: Stunning Dangerous Ransomware Threat

Hook Android Trojan: Stunning Dangerous Ransomware Threat

A new Hook Android Trojan variant now combines banking fraud with ransomware-style lockouts, letting attackers both steal credentials and hold phones hostage. Millions of users should tighten app sources, review permissions, and keep backups as defenders scramble to catch up.

Analyst 207
Impersonation as a service: Stunning and Dangerous Threat

Impersonation as a service: Stunning and Dangerous Threat

Imagine your password doesn’t matter because someone can perfectly impersonate you — that’s the new reality as “impersonation as a service” blends deepfakes, scraped data, and skilled social engineers to trick businesses and people into handing over money and secrets. The fix isn’t just tech: smarter verification, AI detection, and simple habits like out-of-band confirmation can blunt the threat if organizations and users start assuming anyone can be imitated.

Analyst 207