The mastermind behind a criminal website that sold tools for scammers who defrauded victims globally of more than 115 million euros received a 13-year, four-month prison sentence in the United Kingdom just months after law enforcement seized the site.
Researchers have identified two legitimate-looking malicious npm packages that concealed an open-source info stealer for two months before being detected and removed. Developers downloaded the TurkoRat malware about 1,200 times from open-source repositories.
While security tools have become more adept at detecting payloads in emails, attacks that lack known indicators and rely instead on impersonation/social engineering tactics are successfully bypassing these traditional controls and reaching inboxes. If an organization’s email security controls are not effective...
Business Email Compromise (BEC) is “one of the most financially damaging online crimes” according to the FBI. It is a cunning form of email impersonation that, when combined with human error, can be incredibly disruptive and damaging. Phishing and Account Takeover (ATO) attacks target employees and trick them into...
The expanding RTP landscape represents a definitive transformation in how consumers and organizations interact.
Constantly evolving payments demand agile tools, practices, and processes that enable greater defense against continually manifesting scams and fraud. The FedNow Service launch is right around the...
U.S. federal prosecutors announced a slew of indictments and arrests in cases involving attempts by foreign nationals to illegally export technology into Russia, China and Iran. The arrests are part of a recently announced Disruptive Technology Strike Force.
Cybercrime watchers continue to see prolific use of information-stealing malware such as Raccoon and Vidar, which are being used to populate stolen digital identity listings at markets such as Genesis, RussianMarket and TwoEasy, as well as via Telegram channels offering "clouds of logs."
2022 taught us that fincrime is anything but predictable. Fraud activities and scams have rapidly evolved, accompanied by increasingly audacious fraudsters. From individuals to businesses, government entities to financial institutions (FIs).
Download our comprehensive whitepaper to learn how to:
Build robust fraud...
Discover the power of a cloud-based, AI-first approach to fraud prevention and anti-money laundering (AML) in our comprehensive eBook. Unlock the potential for mid-market, regional, and community banks, as well as credit unions:
Learn how to supercharge your fraud detection capabilities
Streamline your...
The onset of COVID-19 has fast-tracked the trend of mobile-first banking. Mobile banking opens a whole new can of worms that security teams must prepare for. This means that it's more important than ever for banks to have robust cybersecurity measures in place to protect their customers.
Download this whitepaper to...
Fraudsters and cybercriminals are continuously finding new opportunities to exploit online activity, transactions, and the generosity of individuals.
Stay one step ahead of fraud with our new Insights Article. Gain valuable knowledge about the latest fraud trends, effective preparations, and preventive measures to...
While historically the origin of most business email compromise (BEC) attacks has been West Africa, residing in Nigeria certainly isn’t a requirement for BEC attackers. Indeed, the subject of this report is a sophisticated threat group based in Israel.
The group is unique in that they impersonate executives and...
In this week's data breach, the spotlight was on Dragos, a guilty plea from a Twitter hacker and cryptocurrency thief and North Korean hackers. Also, Sysco, a Ukrainian border truck queuing system and an update on Western Digital. Plus, a new tool for decrypting partially encrypted files.
The security of hundreds of MSI products is at risk due to hackers leaking private code signing keys stolen during a data breach last month. The signing keys allow an attacker to push malicious firmware updates under the guise of regular BIOS update processes with MSI update tools.
The LockBit 3.0 ransomware group on Monday leaked 600 gigabytes of critical data stolen from Indian lender Fullerton India two weeks after the group demanded a $3 million ransom from the company. The stolen data includes "loan agreements with individuals and legal companies."
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.com, you agree to our use of cookies.
