Categories
Security

Bank of England to U.K. banks: Your tech needs a Plan B

The bank Bank of England, together with the Financial Conduct Authority and the Prudential Regulation Authority, has cautioned U.K. banks to prepare for cyber attacks and technical failures.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

Phishing campaign has an extra payload for business networks

A new malicious spam campaign that has been targeting Internet users in the U.K. serves as an important example of how banking malware targets business as well as home users.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

GDPR tool for helping consumers exposes hurdles as well

The GDPR doesn’t mandate how data requests should be made, but it does say that organizations handling personal data should be prepared to handle the requests. One would be right to wonder whether companies are as prepared as they should be.
Read more on Payment Source. (Note: subscription wall.)

Categories
Uncategorized

Ticketmaster's U.K. breach shows risks of third-party code on websites

Ticket sales company Ticketmaster has warned customers in the U.K. that malicious code running on its website could have led to personal data and payment details being stolen. This kind of breach through third-party JavaScript code is quite common and may go undetected for months.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

Banks may need threat teams to fight the next wave of SWIFT-style attacks

Almost two-thirds of financial institutions have yet to form threat hunting teams — a growing necessity as the number of high-profile attacks rises.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

When crypto exchanges act like banks, regulators may treat them as such

Exchanges aren’t very transparent about their methods, but that in fact most handle such internal transactions exactly how regular banks have worked for centuries.
Read more on Payment Source. (Note: subscription wall.)

Categories
Uncategorized

Polish banks targeted by attackers who hijack customer sessions

Rather than hooking into the browser process, BackSwap takes the place of the user and enters the same commands into the browser that a user would if they wanted to hack themselves.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

Why the ransom demand on Canadian banks was a no-win scenario

Two major Canadian banks, Bank of Montreal and Simplii Financial, have become victims of hacks that affected some 50,000 and 40,000 customers respectively. Neither bank decided to pay the ransom by the hackers’ May 28 deadline.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

How TSB's simple tech issue became a big phishing problem

Security is a top priority for financial institutions around the world. In the past few weeks, the U.K.’s TSB Bank has learned the hard way that availability is even more important. And when availability is an issue, security can’t be ignored.
Read more on Payment Source. (Note: subscription wall.)

Categories
Security

How cryptocurrency is killing the 'money mule'

A new strain of malware that targets cryptocurrency users — but not users of mainstream payment options like bank accounts — highlights how much the cybercrime game is changing behind the scenes.
Read more on Payment Source. (Note: subscription wall.)