Skip to main content

Tag: financial services

68 articles

Technicians monitor rows of networking equipment with blinking lights in a dimly lit control room.

Russian Hackers Target Network Devices With Exploits

Russian hackers, linked to the Federal Security Service's Center 16, have been actively targeting critical US and foreign networks across multiple sectors, including defense, energy, and healthcare, for over a decade. This ongoing threat has compromised networks in various industries, posing significant risks to national security and global stability.

Analyst 207
Office workstation with laptop and printer in background.

EvilTokens Exposes New Blind Spot in Email Security

A shocking 75.6% of consulting firms were exposed to phishing attacks in 2026, with other industries like financial services, manufacturing, and tech also falling prey to these threats. EvilTokens' ghost phishing campaign uses a sneaky Microsoft Device Code Phishing tactic to trick victims into giving hackers access to their Microsoft 365 accounts.

Analyst 207
Brightly-lit industrial setting shows subtle signs of disruption.

The Gentlemen Ransomware Gang Exposes Advanced Tactics

Meet The Gentlemen, a notorious ransomware gang that's made a name for itself with sophisticated tactics, ranking among the top 10 ransomware actors in just a few months. Since February 2026, they've been wreaking havoc across industries and geographies, with a strong presence in Brazil, China, Indonesia, Taiwan, and Thailand.

Analyst 207
Brightly-lit office with rows of computer servers and a large screen displaying a blurred image.

Hackers Inject Malicious Script in Polymarket Supply-Chain Attack

Polymarket has pledged to fully reimburse customers who lost around $3 million in a shocking supply-chain attack that injected malicious JavaScript into the platform's frontend via a third-party vendor breach. The incident highlights the vulnerability of even major players to these types of attacks.

Analyst 207
Professional workspace with laptop, papers, and office supplies, blurred email inbox in background.

North Korea Targets Developers with 250 Fake Job Offers in Credential Heist

In a sneaky credential heist, hackers sent over 250 fake job offers to developers at nearly 100 US organizations, disguising phishing attempts as recruitment messages. The six-week scam targeted professionals in tech, education, and finance.

Analyst 207
Blurred computer workstation and file cabinet in a brightly-lit office interior, with a cityscape visible through the window.

Mandiant Exposes UNC3753's US Law Firm Data Heist Tactics

Beware of UNC3753, a notorious group that's been stealing sensitive data from US law firms and other professional services, using clever vishing tactics and lightning-fast intrusions to extort their victims. In some cases, they can go from initial contact to data theft in under an hour.

Analyst 207
Banking professional stands in modern office surrounded by AI-related devices.

Lloyds Banking Group Unveils Hands-On Approach to Securing Agentic AI

Lloyds Banking Group is taking a proactive approach to securing agentic AI, recognizing that understanding AI itself is crucial to embedding security into its adoption. The bank has made security a top priority, framing it as a deliberate technical strategy that spans the entire AI lifecycle.

Analyst 207
Bank lobby with a subtle hint of vulnerability on a computer screen.

Banks' Annual Testing Model Leaves 345 Days of Unvalidated Exposure

Imagine having 345 days of potential vulnerability, with hackers free to exploit your defenses while you wait for your annual security test. That's the harsh reality of the traditional annual testing model, which leaves your business exposed for nearly 11 months of the year.

Analyst 207
Smartphone displays trading interface on modern office desk with cityscape background.

Robinhood's AI Trading Push Raises Accountability, Security Risks

As Robinhood rolls out AI-powered trading and credit card features, experts are sounding the alarm on potential accountability and security risks - but the company claims it's prioritizing safety with built-in controls. Can AI agents truly be trusted to make trades and purchases on our behalf?

Analyst 207
Sleek, modern tech headquarters interior with cityscape view through large window.

Apple Foils $11 Billion in App Store Fraud Over Six Years

Apple's vigilant efforts have paid off, blocking a whopping $11 billion in App Store fraud over the past six years, with a staggering $2.2 billion foiled in 2025 alone. The tech giant's winning combination of human review and cutting-edge tech has kept scammers at bay.

Analyst 207
Mobile app development environment with smartphone on cluttered desk and cityscape in background.

Agentic AI Turbo Boosts Mobile App Attacks

The alarming rise of mobile app attacks is no longer looming on the horizon - it's here, with a staggering 87% of monitored apps facing threats in 2026, a drastic jump from 55% in 2022, fueled by the rapid adoption of AI models. This explosive growth in attacks is a wake-up call for businesses to bolster their mobile app security.

Analyst 207
Technicians in a dimly lit server room with rows of humming computer servers and storage systems.

UK Regulators Warn Financial Firms on Frontier AI Cybersecurity Risks

UK regulators are sounding the alarm: as frontier AI models advance, financial firms must urgently bolster their cyber defences to avoid catastrophic threats to safety, customers, and financial stability. The warning comes as AI capabilities increasingly outpace human expertise, offering malicious actors unprecedented speed, scale, and low-cost opportunities to wreak havoc.

Analyst 207
Bank employee under scrutiny at desk with laptop and papers amidst financial equipment.

Banks Face Growing Pressure to Justify Fraud Losses

As the Federal Reserve expands FedNow to handle higher-value transactions, banks face a daunting challenge: making split-second decisions to prevent fraud and money laundering, with transactions becoming irreversible in mere seconds. This heightened risk demands innovative solutions to safeguard against losses.

Analyst 207
Person in business casual outfit working intently at a laptop in a brightly-lit office security area.

Organizations Fortify Defenses Against Evolving Scattered Spider Threats

As Scattered Spider threats evolve, organizations across finance, healthcare, and telecom are bolstering their defenses against sophisticated identity-driven attacks. They're facing an adaptable adversary that's changing tactics, putting pressure on institutions to respond.

Analyst 207
Rows of computer servers and storage equipment in a neutral-colored data center with industrial flooring and cable…

PCPJack Credential Stealer Exploits CVEs to Spread Across Cloud Systems

Meet PCPJack, a sneaky credential stealer that's exploiting vulnerabilities to spread rapidly across cloud systems, swiping sensitive info from services like cloud, finance, and productivity tools. Its operators are after one thing: illicit financial gain.

Analyst 207
Brightly-lit office setting with generic computer workstation and scattered papers.

Phishing Campaign Targets 35,000 Users in 2 Days

In just 48 hours, a massive phishing campaign hit over 35,000 users across 13,000 organizations in 26 countries, with nearly 1 in 5 targets in the healthcare and life sciences sector. The alarming attack highlights the speed and scale of modern phishing operations.

Analyst 207
Laptop workstation in a brightly-lit hospital corridor with medical equipment and computers in the background.

Microsoft Exposes Large-Scale Phishing Campaign Targeting 35,000 Users Worldwide

A massive phishing campaign targeting over 35,000 users worldwide has been uncovered, using sophisticated email templates that convincingly masquerade as legitimate internal communications. The highly convincing lures successfully hit organizations across 26 countries, with a staggering 92% of targets based in the US.

Analyst 207
Dental office with scattered files and subtle server room hint.

New York Fines Delta Dental $2.25M for MOVEit Hack Violations

Delta Dental of New York has been fined $2.25 million by the New York Department of Financial Services for its handling of a massive data breach involving hackers stealing around 60,000 files from its MOVEit servers in 2023. The hefty penalty highlights the importance of robust cybersecurity measures to protect sensitive information.

Analyst 207
Person sitting at laptop with concerned expression, surrounded by home environment, looking at suspicious email on screen.

Robinhood Flaw Exploited to Send Convincing Phishing Emails

Scammers have found a way to send fake emails that look like they're really from Robinhood, complete with convincing details like unusual IP addresses and partial phone numbers. These phishing emails even appeared to come from Robinhood's official email address, making them super convincing.

Analyst 207
Fortress-like company headquarters with sleek skyscrapers and ominous gate at dusk.

Goldman Sachs Bolsters Defenses with Anthropic's Mythos Model

Goldman Sachs is taking a proactive approach to harnessing AI's potential while safeguarding against risks, partnering with Anthropic and security vendors to deploy controls around powerful models like Mythos. CEO David Solomon emphasizes the bank's hyper-aware stance, balancing innovation with robust risk management to mitigate threats like accelerated cyberattacks.

Analyst 207
Darkened secure facility with shattered glass, broken safe, scattered crypto tokens, and damaged computer equipment.

Bitcoin Depot Suffers $3.6m Crypto Heist After System Breach

In a shocking turn of events, Bitcoin Depot fell victim to a cunning cyber-attack, allowing hackers to siphon off over 50 Bitcoin worth a staggering $3.66m from its internal systems. The breach has left the company scrambling to rebuild trust and protect its customers.

Analyst 207
Financial Services Grapple with SecOps and GRC Alignment Challenges

Financial Services Grapple with SecOps and GRC Alignment Challenges

In financial services, two crucial functions - SecOps and GRC - are struggling to move in lockstep, despite their shared goals of protecting assets and meeting regulatory expectations. Can they ever align to tackle security and compliance challenges head-on?

Analyst 207
Fraud Investigation: Stunning Python Malware Alarming Banks

Fraud Investigation: Stunning Python Malware Alarming Banks

Stunning new findings reveal a Python-based malware toolkit—layered obfuscation, throwaway infrastructure and automated workflows—that powered large-scale bank fraud. Now banks face a stark choice: tighten controls and risk customer friction, or live with stealthy theft that slowly erodes trust.

Analyst 207
Jackpotting Surge: Stunning, Costly $20M Hit to Banks

Jackpotting Surge: Stunning, Costly $20M Hit to Banks

An FBI alert reveals ATM jackpotting cost banks $20M in 2025—criminals are now turning cash machines into programmable paydays by exploiting unpatched systems, weak credentials, and supply‑chain gaps. It’s a wake‑up call that security isn’t just about tech—people and processes matter too.

Analyst 207