Banking and Information Security - Cyber Security Informer

Hackers stole millions of dollars from Uganda Central Bank

Security Affairs

NOVEMBER 30, 2024

Financially-motivated threat actors hacked Uganda ‘s central bank system, government officials confirmed this week. Ugandan officials confirmed on Thursday that the national central bank suffered a security breach by financially-motivated threat actors. The Daily Monitor newspaper reported that the attackers stole 47.8

Banking

Banking Government Accountability Hacking

New version of Android malware FakeCall redirects bank calls to scammers

Security Affairs

OCTOBER 30, 2024

The latest FakeCall malware version for Android intercepts outgoing bank calls, redirecting them to attackers to steal sensitive info and bank funds. The malware allows operators to steal bank users’ sensitive information and money from their bank accounts. ” reads the report published by Zimperium.

Banking

Banking Malware Accountability Phishing

ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy

Security Affairs

NOVEMBER 5, 2024

The ToxicPanda Android malware has infected over 1,500 devices, enabling attackers to perform fraudulent banking transactions. Cleafy researchers spotted a new Android banking malware, dubbed ToxicPanda, which already infected over 1,500 Android devices. ” reads the report published by Cleafy.

Banking

Banking Malware Accountability Authentication

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Russian authorities arrest three suspects behind Mamont Android banking trojan

Security Affairs

MARCH 28, 2025

Russian authorities arrested three suspects for developing Mamont, a newly identified Android banking trojan. Russian authorities arrested three suspects in Saratov for developing Mamont (Russian for mammoth), a recently discovered Android banking trojan. Mamont can also spread to contacts in the victims messenger app.

Banking

Banking Computers and Electronics Mobile Malware

Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites

Security Affairs

FEBRUARY 4, 2025

Coyote Banking Trojan targets Brazilian users, stealing data from over 70 financial applications and websites. FortiGuard Labs researchers detected a campaign using LNK files executing PowerShell commands to deploy the Coyote Banking Trojan. Then the malware starts monitoring the active window.

Banking

Banking Malware Antivirus Cyber threats

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

The Last Watchdog

JUNE 12, 2023

Information privacy and information security are two different things. Related: Tapping hidden pools of security talent Information privacy is the ability to control who (or what) can view or access information that is collected about you or your customers. still available for you to use.

Information Security

Information Security Data breaches CISO Encryption

California Cryobank, the largest US sperm bank, disclosed a data breach

Security Affairs

MARCH 19, 2025

California Cryobank, the largest US sperm bank, suffered a data breach exposing customer information. California Cryobank (CCB) is the largest sperm bank in the U.S., providing frozen donor sperm and reproductive services, including egg and embryo storage.

Data breaches

Data breaches Banking Insurance Hacking

Crooks are reviving the Grandoreiro banking trojan

Security Affairs

MARCH 28, 2025

Grandoreiro Banking Trojan resurfaces, targeting users in Latin America and Europe in new phishing campaigns. Forcepoint X-Labs researchers warn of new phishing campaigns targeting Latin America and Europe in new phishing campaigns.

Banking

Banking Phishing Malware Passwords

Change Healthcare Breach Hits 100M Americans

Krebs on Security

OCTOBER 30, 2024

The chief information security officer for a large academic healthcare system affected by the breach told KrebsOnSecurity they participated in a call with the FBI and were told a third party partner managed to recover at least four terabytes of data that was exfiltrated from Change by the cybercriminal group.

Healthcare

Healthcare Insurance Computers and Electronics Data breaches

Russia’s second-largest bank VTB Bank under DDoS attack

Security Affairs

DECEMBER 6, 2022

Russia’s second-largest bank VTB Bank reveals it is facing the largest DDoS (distributed denial of service) attack in its history. State-owned VTB Bank, the second-largest financial institution in Russia, says it is facing the largest DDoS (distributed denial of service) attack in its history. ” Source USnews.com.

Banking

Banking DDOS Cyber Attacks Government

Experts warn of the new sophisticate Crocodilus mobile banking Trojan

Security Affairs

MARCH 29, 2025

The new Android trojan Crocodilus exploits accessibility features to steal banking and crypto credentials, mainly targeting users in Spain and Turkey. ThreatFabric researchers discovered a new Android trojan called Crocodilus, which exploits accessibility features to steal banking and crypto credentials. ” ThreatFabric concludes.

Banking

Banking Mobile Identity Theft Malware

Grandoreiro Banking Trojan is back and targets banks worldwide

Security Affairs

MAY 19, 2024

A new Grandoreiro banking trojan campaign has been ongoing since March 2024, following the disruption by law enforcement in January. IBM X-Force warns of a new Grandoreiro banking trojan campaign that has been ongoing since March 2024. The banking Trojan is likely operated as a Malware-as-a-Service (MaaS).

Banking

Banking Malware Antivirus Accountability

Many Public Salesforce Sites are Leaking Private Data

Krebs on Security

APRIL 27, 2023

A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. Huntington Bank has disabled the leaky TCF Bank Salesforce website.

Banking

Banking Government Information Security Authentication

New Android banking Malware targets Brazil’s Itaú Unibanco Bank

Security Affairs

DECEMBER 27, 2021

Researchers analyzed a new Android banking malware that targets Brazil’s Itaú Unibanco that spreads through fake Google Play Store pages. “_lTAU_SINC/sincronizador Android malware targets the Brazilian bank Itaú Unibanco’s users and tries to perform fraudulent financial transactions without the victim’s knowledge.”

Banking

Banking Malware Hacking Mobile

New Android banking trojan Octo2 targets European banks

Security Affairs

SEPTEMBER 24, 2024

A new version of the Android banking trojan Octo, called Octo2, supports improved features that allow to takeover infected devices. ThreatFabric researchers discovered a new version of the Android banking trojan Octo, called Octo2, that supports more advanced remote action capabilities needed for Device Takeover attacks.

Banking

Banking Mobile Malware Social Engineering

Ukraine’s cyber operation shut down the ATM services of major Russian banks

Security Affairs

JULY 27, 2024

Ukraine launched a massive cyber operation that shut down the ATM services of the biggest Russian banks on July 27, reported the Kyiv Post. Ukraine has launched a massive cyberattack against ATMs of Russian banks, the cyber operation began on July 23. reported the KyivPost.

Banking

Banking Mobile Hacking Internet

Evolve Bank data breach impacted over 7.6 million individuals

Security Affairs

JULY 9, 2024

The Lockbit ransomware attack on Evolve Bank has compromised the personal information of over 7.6 At the end of June, the LockBit gang announced that it had breached the systems of the Federal Reserve of the United States and exfiltrated 33 TB of sensitive data, including “Americans’ banking secrets.” million individuals.

Data breaches

Data breaches Banking Retail Ransomware

ICICI Bank exposed credit card data of 17000 customers

Security Affairs

APRIL 28, 2024

ICICI Bank, a major private bank in India, mistakenly exposed the sensitive data of thousands of new credit cards to unintended recipients. ICICI Bank, one of the leading private banks in India, accidentally exposed data of thousands of new credit cards to customers who were not the intended recipients.

Banking

Banking Financial Services Retail Mobile

Flagstar Bank suffered a data breach once again

Security Affairs

OCTOBER 9, 2023

Flagstar Bank announced a data breach suffered by a third-party service provider exposed the personal information of over 800,000 US customers. Flagstar Bank is warning 837,390 US customers that their personal information was exposed after threat actors breached the third-party service provider Fiserv.

Data breaches

Data breaches Banking Hacking Mobile

New sophisticate malware SuperCard X targets Androids via NFC relay attacks

Security Affairs

APRIL 21, 2025

The fraud campaign starts with fake bank alerts via SMS or WhatsApp, luring victims to call attackers. Since victims often do not recall their PIN immediately, the attackers guide them through their mobile banking application to retrieve this sensitive information.” ” reads the report published by Cleafy.

Malware

Malware Social Engineering Banking Engineering

MaliBot Android Banking Trojan targets Spain and Italy

Security Affairs

JUNE 18, 2022

Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers spotted a new strain of Android malware, named Malibot, that is targeting online banking and cryptocurrency wallet customers in Spain and Italy. ” reads the advisory published by F5 Labs. .

Banking

Banking Cryptocurrency Malware Mobile

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

Security Affairs

MARCH 25, 2022

Anonymous announced that the affiliate group Black Rabbit World has leaked 28 GB of data stolen from the Central Bank of Russia. This week the Anonymous hacker collective claims to have hacked the Central Bank of Russia and stole accessed 35,000 documents. SecurityAffairs – hacking, Central Bank of Russia). Pierluigi Paganini.

Banking

Banking Government Hacking Authentication

ERMAC 2.0 Android Banking Trojan targets over 400 apps

Security Affairs

MAY 27, 2022

A new version of the ERMAC Android banking trojan is able to target an increased number of apps. The ERMAC Android banking trojan version 2.0 ERMAC was first spotted by researchers from Threatfabric in July 2021, it is based on the popular banking trojan Cerberus. Interestingly, we observed that ERMAC 2.0 “ERMAC 2.0

Banking

Banking Malware Cybercrime Phishing

Cybercriminals attack banking customers in EU with V3B phishing kit – PhotoTAN and SmartID supported.

Security Affairs

JUNE 4, 2024

Resecurity uncovered a cybercriminal group that is providing a sophisticated phishing kit, named V3B, to target banking customers in the EU. “Currently, it is estimated that hundreds of cybercriminals are using this kit to commit fraud, leaving victims with empty bank accounts. . ” reads the report published Resecurity.

Banking

Banking Phishing Social Engineering Engineering

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

Plus, Europol offers best practices for banks to adopt quantum-resistant cryptography. Meanwhile, an informal Tenable poll looks at cloud security challenges. government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking

Banking Cybercrime Cybersecurity Ransomware

BingoMod Android RAT steals money from victims’ bank accounts and wipes data

Security Affairs

JULY 31, 2024

BingoMod is a new Android malware that can wipe devices after stealing money from the victims’ bank accounts. Researchers at Cleafy discovered a new Android malware, called ‘BingoMod,’ that can wipe devices after successfully stealing money from the victims’ bank accounts.

Banking

Banking Accountability Malware Mobile

A phishing campaign targets clients of German banks using QR codes

Security Affairs

DECEMBER 12, 2021

Cofense researchers discovered a new phishing campaign using QR codes targeting German e-banking users in the last weeks. The phishing messages are carefully crafted, the content was well-structured and features bank logos. The use of QR codes making it hard for email filters to flag the messages as malicious. Pierluigi Paganini.

Banking

Banking Phishing Social Engineering Engineering

Bank of America customer data compromised after a third-party services provider data breach

Security Affairs

FEBRUARY 13, 2024

Bank of America revealed that the personal information of some customers was stolen in a data breach affecting a third-party services provider. Bank of America began notifying some customers following a data breach at the third-party services provider Infosys McCamish System (IMS). Bank of America’s systems were not compromised.”

Data breaches

Data breaches Banking Identity Theft Ransomware

Caketap, a new Unix rootkit used to siphon ATM banking data

Security Affairs

MARCH 18, 2022

Experts spotted a new Unix rootkit, called Caketap, that was used to steal ATM banking data. Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). ” reads the analysis published by Mandiant.

Banking

Banking Telecommunications System Administration Hacking

New variant of BBTok Trojan targets users of +40 banks in LATAM

Security Affairs

SEPTEMBER 24, 2023

A new variant of a banking trojan, called BBTok, targets users of over 40 banks in Latin America, particularly Brazil and Mexico. Check Point researchers warn of a new variant of a banking trojan, called BBTok, that is targeting users of over 40 banks in Latin America. ” reads the report published by Check Point.

Banking

Banking Phishing Malware Hacking

DoJ seized credit card marketplace PopeyeTools and charges its administrators

Security Affairs

NOVEMBER 24, 2024

Stolen information offered for sale on the carding website included bank account, credit card, and debit card numbers and associated information for conducting transactions. million in revenue.

Cybercrime

Cybercrime Cryptocurrency Banking Accountability

Anatsa Android banking Trojan expands to Slovakia, Slovenia, and Czechia

Security Affairs

FEBRUARY 19, 2024

The Android banking trojan Anatsa resurged expanding its operation to new countries, including Slovakia, Slovenia, and Czechia. In November 2023, researchers from ThreatFabric observed a resurgence of the Anatsa banking Trojan, aka TeaBot and Toddler. ” concludes the report. ” concludes the report. .

Banking

Banking Malware Mobile Authentication

Industrial and Commercial Bank of China (ICBC) suffered a ransomware attack

Security Affairs

NOVEMBER 10, 2023

The Industrial and Commercial Bank of China (ICBC) suffered a ransomware attack that disrupted trades in the US Treasury market. The Industrial and Commercial Bank of China (ICBC) announced it has contained a ransomware attack that disrupted the U.S. ” reported the Financial Times. ” reported the Financial Times.

Banking

Banking Ransomware Marketing Financial Services

A crime ring compromised Italian state databases reselling stolen info

Security Affairs

OCTOBER 28, 2024

. “Milan prosecutors allege the business intelligence agency tapped into three key databases: one gathering alerts over suspicious financial activities; one used by the national tax agency with citizens’ bank transactions, utility bills, income statements; and the police investigations’ database, the person said.”

Computers and Electronics

Computers and Electronics Banking Marketing Hacking

17 Android Apps on Google Play Store, dubbed DawDropper, were serving banking malware

Security Affairs

JULY 31, 2022

The researchers discovered over a dozen Android Apps on Google Play Store, collectively dubbed DawDropper, that were dropping Banking malware. ” DawDropper apps were spotted dropping four families of banking trojans, including Octo, Hydra, Ermac , and TeaBot. “It also hosts malicious payloads on GitHub. Pierluigi Paganini.

Banking

Banking Malware VPN Hacking

The US Treasury’s OCC disclosed an undetected major email breach for over a year

Security Affairs

APRIL 9, 2025

The confidentiality and integrity of the OCCs information security systems are paramount to fulfilling its mission, said Acting Comptroller of the Currency Rodney E. Some contained sensitive financial data, leading the OCC and Treasury to classify the incident as a major one. The review process is still ongoing.

Accountability

Accountability Banking Information Security Hacking

Laboratory Services Cooperative data breach impacts 1.6 Million People

Security Affairs

APRIL 11, 2025

“The specific information involved is not the same for everyone.” Health Insurance Information: This may encompass plan name, plan type, insurance companies, and member/group ID numbers. ” reads the notice of data breach.

Data breaches

Data breaches Insurance Banking Accountability

Pro-Russia hackers NoName057 targets Italy again after Zelensky’s visit to the country

Security Affairs

JANUARY 12, 2025

” On Saturday, January 11, the attacks targeted Italian ministries and government institutions, while on Sunday a new wave of DDoS attacks hit Italian banks and private businesses. Noname057(16) hackers also hit Italian banks, including Intesa, Monte Paschi di Siena, and Italian ports of the cities of Taranto and Trieste.

DDOS

DDOS Banking Government Marketing

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

“No passwords” , “no bank cards” , “no content of communications (emails, SMS, voice messages, etc.)” The company said that passwords and bank card details were not compromised, it also pointed out that its customers’ communications were not exposed. million IBAN details.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

A ransomware attack disrupted operations at OneBlood blood bank

Security Affairs

JULY 31, 2024

OneBlood, a non-profit blood bank serving over 300 U.S. hospitals, suffered a ransomware attack that disrupted its medical operations. OneBlood is a non-profit organization that provides blood and blood products to over 300 hospitals and medical facilities across the U.S.

Banking

Banking Ransomware Healthcare Cyber Attacks

International law enforcement operation dismantled RedLine and Meta infostealers

Security Affairs

OCTOBER 29, 2024

Change passwords : After malware removal, update passwords for key accounts (email, banking, work, social media) and enable two-factor authentication. Monitor financial accounts : Check bank statements and report any suspicious transactions promptly. Use a password manager : Simplifies managing strong, unique passwords across accounts.

Identity Theft

Identity Theft Passwords Malware Banking

Smishing Triad Is Targeting Pakistan To Defraud Banking Customers At Scale

Security Affairs

JUNE 20, 2024

Previously, Resecurity described multiple episodes of Smishing Triad activity targeting online banking, e-commerce and payment systems customers in other geographies including USA, EU, UAE and KSA. The code and templates used by the attackers in this smishing kit are consistent with those observed in previous instances of Smishing Triad.

Banking

Banking Data breaches Mobile Phishing

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

SecureWorld News

MARCH 20, 2025

Stephen Kowski, Field CTO at SlashNext Email Security+. Attackers are mimicking tournament brackets, betting promotions, and registration formstricking users into handing over credentials or linking bank accounts to fraudulent sites. Use multi-factor authentication (MFA) : Enable MFA, especially for betting or banking accounts.

Scams

Scams Social Engineering Mobile Phishing

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload. .” Fake file converters and download tools may perform advertised tasks but can provide resulting files containing hidden malware, giving criminals access to victims’ devices.

Malware

Malware Scams Identity Theft Antivirus

Hackers stole millions of dollars from Uganda Central Bank

New version of Android malware FakeCall redirects bank calls to scammers

Webinars

Trending Sources

ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy

Webinars

Russian authorities arrest three suspects behind Mamont Android banking trojan

Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

California Cryobank, the largest US sperm bank, disclosed a data breach

Crooks are reviving the Grandoreiro banking trojan

Change Healthcare Breach Hits 100M Americans

Russia’s second-largest bank VTB Bank under DDoS attack

Experts warn of the new sophisticate Crocodilus mobile banking Trojan

Grandoreiro Banking Trojan is back and targets banks worldwide

Many Public Salesforce Sites are Leaking Private Data

New Android banking Malware targets Brazil’s Itaú Unibanco Bank

New Android banking trojan Octo2 targets European banks

Ukraine’s cyber operation shut down the ATM services of major Russian banks

Evolve Bank data breach impacted over 7.6 million individuals

ICICI Bank exposed credit card data of 17000 customers

Flagstar Bank suffered a data breach once again

New sophisticate malware SuperCard X targets Androids via NFC relay attacks

MaliBot Android Banking Trojan targets Spain and Italy

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

ERMAC 2.0 Android Banking Trojan targets over 400 apps

Cybercriminals attack banking customers in EU with V3B phishing kit – PhotoTAN and SmartID supported.

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

BingoMod Android RAT steals money from victims’ bank accounts and wipes data

A phishing campaign targets clients of German banks using QR codes

Bank of America customer data compromised after a third-party services provider data breach

Caketap, a new Unix rootkit used to siphon ATM banking data

New variant of BBTok Trojan targets users of +40 banks in LATAM

DoJ seized credit card marketplace PopeyeTools and charges its administrators

Anatsa Android banking Trojan expands to Slovakia, Slovenia, and Czechia

Industrial and Commercial Bank of China (ICBC) suffered a ransomware attack

A crime ring compromised Italian state databases reselling stolen info

17 Android Apps on Google Play Store, dubbed DawDropper, were serving banking malware

The US Treasury’s OCC disclosed an undetected major email breach for over a year

Laboratory Services Cooperative data breach impacts 1.6 Million People

Pro-Russia hackers NoName057 targets Italy again after Zelensky’s visit to the country

France’s second-largest telecoms provider Free suffered a cyber attack

A ransomware attack disrupted operations at OneBlood blood bank

International law enforcement operation dismantled RedLine and Meta infostealers

Smishing Triad Is Targeting Pakistan To Defraud Banking Customers At Scale

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

FBI warns of malicious free online document converters spreading malware

Stay Connected