07 September 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

FinServ Cyber
Japan’s Tokio Marine is the latest insurer to be victimized by ransomwareCyberScoopNews – Twitter – Sep 05 2021 13:53Japan's Tokio Marine is the latest insurer to be victimized by ransomware hxxps://www[.]cyberscoop[.]com/tokio-marine-ryan-specialty-group-ransomware-cyber-insurance/ hxxps://twitter[.]com/CyberScoopNews/status/1434514912856973317/photo/1
Pacific City Bank hit by AVOS Locker RansomwareSecurity Affairs – Sep 05 2021 20:13Pacific City Bank was hit by AVOS Locker Ransomware operators, the gang claims to have stolen sensitive file from the company and threatens to leak it. Pacific City Bank is an American community bank that focuses on the Korean-American community based…
FIN7 Hackers Using ‘Windows 11 Alpha’ Themed Malicious Documents to Drop JavaScript BackdoorE Hacking News – Sep 06 2021 08:28In a recent wave of the spear-phishing campaign, the FIN7 cybercrime group employed Windows 11 Alpha-themed weaponized word documents to deliver a JavaScript payload with a JavaScript backdoor. ‘Phishing Email Campaign’ is the initial attack vector,…
Beware of new ‘Windows 11 Alpha’ malicious Word attachmentsBleeping Computer – Sep 04 2021 17:13Relying on a simple recipe that has proved successful time and time again, threat actors have deployed a malware campaign recently that used a Windows 11 theme to lure recipients into activating malicious code placed inside Microsoft Word documents.
Increase in credential phishing and brute force attacks causing financial and reputational damage – – @AbnormalSec @evanreiser #cybersecurity #security #infosecurity #itsecurity #CISO #cybersecuritynews #securitynews #trendshelpnetsecurity – Twitter – Sep 04 2021 18:00Increase in credential phishing and brute force attacks causing financial and reputational damage – hxxps://www[.]helpnetsecurity[.]com/2021/08/31/increase-in-credential-phishing/ – @AbnormalSec @evanreiser #cybersecurity #security #infosecurity…
“FudCo” Spam Empire Tied to Pakistani Software FirmKrebs on Security – Sep 06 2021 19:04In May 2015, KrebsOnSecurity briefly profiled “The Manipulaters,” the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email….
Windows 11 Alpha-Themed Docs Are Used to Deliver a New MalwareHeimdal Security Blog – Sep 06 2021 10:47It’s possible that the malicious group behind the campaign to be the FIN7 group, a cybercrime group also known as Carbanak or Navigator that specializes in stealing payment card data. What Happened? The cybercriminals inserted macro code into…
Canada cyber security and cyber crime statistics (2020-2021)Comparitech Blog – Sep 06 2021 16:09Cyber crime rates continue to increase in Canada with both individuals and businesses being affected. While it often gets lumped in with the US in some statistics, Canada has its own unique cyber crime and cyber security landscape. Ransomware,
Vulnerability Summary for the Week of August 30, 2021CISA Bulletins – Sep 06 2021 11:23Original release date: September 6, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info atlassian — confluence In affected versions of Confluence Server and Data Center, an OGNL injection…
Understanding and Mitigating Banking Trojans: From Zeus to Emotet. (arXiv:2109.01610v1 [cs[.]CR])arXiv.org – Sep 06 2021 00:47Banking Trojans came a long way in the past decade, and the recent case of Emotet showed their enduring relevance. The evolution of the modern computing landscape can be traced through Emotet and Zeus, both representative examples
QakBot technical analysis (by Kaspersky)MalwareTips.com – Sep 06 2021 11:56Main description​QakBot, also known as QBot, QuackBot and Pinkslipbot, is a banking Trojan that has existed for over a decade. It was found in the wild in 2007 and since then… Read more
TrickBotCephurs – Twitter – Sep 06 2021 14:28TrickBot hxxps://therecord[.]media/?p=7030
Gootloader (aka modern Gootkit) is legit used for corporate network access resale, with domains like… . That would be a fun IR report.GossiTheDog – Twitter – Sep 04 2021 11:09Gootloader (aka modern Gootkit) is legit used for corporate network access resale, with domains like… hxxp://dontcookyourballs[.]com. That would be a fun IR report.
Definitely beats the time that Vice asked me for comment on an article about NSA’s Ghidra tool and the editor cited me as “Hutchins, who is awaiting trial for his alleged role in writing a banking malware,” 💀MalwareTechBlog – Twitter – Sep 05 2021 18:09Definitely beats the time that Vice asked me for comment on an article about NSA's Ghidra tool and the editor cited me as "Hutchins, who is awaiting trial for his alleged role in writing a banking malware," 💀
Fraud & Money Laundering
Money laundering ‘lifts property’GoldCoastBulletin.com.au Business – Sep 06 2021 10:11Austrac has warned that laundering the proceeds of crime through property purchases can drive up prices and keep legitimate buyers out of the market.
United Nations Report: India Hub for Money LaunderingPakistan Defence – Sep 04 2021 08:42The top-secret files of the US Treasury Department’s Financial Crimes Enforcement Network (FinCEN) have exposed the involvement of Indian banks, including the state-owned banks, in money laundering through transactions used in facilitating and…
AUSTRAC eyes big four money laundering, terrorism riskAustralian Financial Review – Sep 06 2021 06:27Financial intelligence regulator AUSTRAC has assessed the four major banks as the highest risk for vulnerability and criminal exploitation of any banking institutions in Australia in a series of risk assessments published on Monday.
Preventing Identity Fraud: The Road Ahead For Financial ServicesCareersInfoSecurity.eu – Sep 05 2021 19:23There’s no question: 2020 brought unanticipated changes and challenges for Financial Services. The notable surge in consumers’ use of websites and mobile apps for their banking transactions exposed critical gaps in our digital identity and…
How The Biggest Banks Have Major Fraud ScandalsFrank On Fraud Blog – Sep 07 2021 02:35This is an interesting video created by ColdFusion, an Australian-based online media company independently run by Dagogo Altraide. The video tackles the problem of bank fraud at major banks and illustrates the point by focusing on Wells Fargo’s Fake…
Did Huawei’s Meng defraud HSBC? Hong Kong’s banking regulator must investigateSouth China Morning Post – Sep 06 2021 23:30Meng’s fateful meeting with HSBC took place in Hong Kong, between Hong Kong parties. While the case has unleashed a storm elsewhere, why has the Hong Kong Monetary Authority remained silent?
BitConnect faces $2bn SEC fraud chargeFinTech Futures – Sep 06 2021 05:56The US Securities and Exchange Commission (SEC) has filed charges against now-defunct online crypto lending platform BitConnect alleging it defrauded retail investors out of $2 billion. The regulator is also targeting founder Satish Kumbhani, US…
Social Media Fraud: Are Influencers Trying to Scam You?MediaCenter Panda Security – Sep 06 2021 10:28Many of the biggest social media influencers have built huge online followings by flaunting their success. Pictures of glamorous lifestyles, fancy cars, shiny jewellery, luxury holidays and bundles of cash have proven to be very popular with social…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Financial Services Threat Alert

Sign up to receive strategic intelligence on the biggest threats facing the Financial Services industry.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal