21 September 2021

This alert was created automatically by our award-winning intelligence product Silobreaker Online. Story selection is determined by an algorithm and based on a set of queries initially set by a Silobreaker user. Contact us here for more information.

FinServ Cyber
How to Protect Your Credit Card from CybercriminalsOnline Threat Alerts – Sep 18 2021 14:55Credit cards are convenient to use. You don’t need to carry cash around. And, It gets even better. Even without money, y… read more.
Hackers Impersonate Bank Customers and Make $500k in Fraudulent Credit Card PaymentsE Hacking News – Sep 19 2021 11:33Hackers from other countries were able to impersonate 75 bank clients and made $500,000 in fraudulent credit card payments. This was accomplished using a clever way of intercepting one-time passwords (OTPs) sent by banks via SMS text messages. In a…
European police arrested 106 alleged members of Italian Mafia gangs, including hackers who were doing SIM swapping, phishing, and hacking bank accounts. The alleged criminals employed hackers “specialized in phishing, vishing, and social engineering.”lorenzoFB – Twitter – Sep 20 2021 14:20European police arrested 106 alleged members of Italian Mafia gangs, including hackers who were doing SIM swapping, phishing, and hacking bank accounts.

The alleged criminals employed hackers “specialized in phishing, vishing, and social…

APT-C-36 Drops Commodity RATs For Financial GainsCyware – Sep 18 2021 18:52An ongoing spam campaign by APT-C-36 is targeting South American entities with commodity RATs for financial benefits. It is reportedly deploying multiple RATs such as njRAT, BitRAT, Async RAT, and Lime RAT. Apart from potential financial gains, the…
SOVA Trojan: A Potential Harbinger of ChaosCyware – Sep 18 2021 18:52A new advanced banking trojan called SOVA has been discovered targeting banking applications, cryptocurrency wallets, and shopping apps. It is an Android-based malware targeting users based in the U.S. and Spain. What has happened?
Financial sector suffers costliest cyberattacksManila Times – Sep 18 2021 16:24During the Covid-19 pandemic, the financial sector has suffered the highest costs per domain name system (DNS) attack, compared to other industries. This was revealed in the 2021 Global DNS Threat Report, a study recently published by EfficientIP, a…
Japan’s Tokio Marine is the latest insurer to be victimized by ransomwareCyberScoopNews – Twitter – Sep 19 2021 17:41Japan's Tokio Marine is the latest insurer to be victimized by ransomware hxxps://www[.]cyberscoop[.]com/tokio-marine-ryan-specialty-group-ransomware-cyber-insurance/
ATM skimmer sentenced to 4 years after bank cameras, license plate readers captured crime spreeCyberScoopNews – Twitter – Sep 18 2021 12:23ATM skimmer sentenced to 4 years after bank cameras, license plate readers captured crime spree

hxxps://www[.]cyberscoop[.]com/atm-skimmer-sentenced-to-4-years-after-bank-cameras-license-plate-readers-captured-crime-spree/…

Sberbank deputy chair: “We’re the number one target for hackers around the globe”FinTech Futures – Sep 20 2021 00:00The threat of cybercrime is a constant for all businesses, with banks and financial institutions being no exception. Research by Accenture predicts that between 2019 and 2023, the banking sector is at risk of losing $347 billion as a result of direct…
Guess I should’ve posted this before my previous tweet about Squirrelwaffle loader reminding me of Emotet. I should’ve originally said “I feel Squirrelwaffle will be the spiritual successor to Emotet and Qakbot, now that those formerly prolific malware families are both gone.”malware_traffic – Twitter – Sep 18 2021 02:28Guess I should’ve posted this before my previous tweet about Squirrelwaffle loader reminding me of Emotet. I should’ve originally said “I feel Squirrelwaffle will be the spiritual successor to Emotet and Qakbot, now that those formerly prolific…
Looks like Dridex moved away from Slack and are exclusively distributing their malware payload through Discord again today 🪲 I’m wondering how @SlackHQ got rid of Dridex within days but @discord fails to battle the threat for several month now 🤔 👉abuse_ch – Twitter – Sep 20 2021 18:42Looks like Dridex moved away from Slack and are exclusively distributing their malware payload through Discord again today 🪲

I’m wondering how @SlackHQ got rid of Dridex within days but @discord fails to battle the threat for several month now 🤔…

@ChicagoCyber @luc4m Emotet admin had an *cough* “office” 😂Jan0fficial – Twitter – Sep 19 2021 14:30@ChicagoCyber @luc4m Emotet admin had an *cough* “office” 😂
@quack_hack Yes and no… Bazarloader is certainly more widespread now, but not using the same distribution tactics we saw with Emotet. (1 of 2)malware_traffic – Twitter – Sep 18 2021 02:45@quack_hack Yes and no… Bazarloader is certainly more widespread now, but not using the same distribution tactics we saw with Emotet. (1 of 2)
@quack_hack (2 of 2) Squirrelwaffle’s distribution tactics are much more in line with what we saw from Emotet: Kind of repetitive and dumber, I think, than BazarLoader distribution.malware_traffic – Twitter – Sep 18 2021 02:48@quack_hack (2 of 2) Squirrelwaffle's distribution tactics are much more in line with what we saw from Emotet: Kind of repetitive and dumber, I think, than BazarLoader distribution.
Quick Malware Analysis: Qakbot and Cobalt Strike pcap from 2021-03-02Security Onion – Sep 20 2021 19:17Thanks to Brad Duncan for sharing this pcap! hxxps://www[.]malware-traffic-analysis[.]net/2021/03/02/index.html We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap: hxxps://docs[.]securityonion[.]net/en/2.3/so…
After a 2 month summer break, Quakbot (aka Qakbot/Qbot) is back in town 🐸🔥 XLS: 📄 More DLLs and XLSs: 👉 Payload URLs: 🌎 Thanks to @pr0xylife and @nokae8 for sharing this ♥️abuse_ch – Twitter – Sep 20 2021 17:46After a 2 month summer break, Quakbot (aka Qakbot/Qbot) is back in town 🐸🔥

XLS:
📄 hxxps://bazaar[.]abuse[.]ch/sample/ec6e25e2e9d622d5d61abe03cda8d0cb009c846dc52a642864b78623d21b3f46/

More DLLs and XLSs:
👉…

Fraud & Money Laundering
UAE central bank sees COVID-19 increasing money-laundering risksThe Daily Star Lebanon Business Regional – Sep 19 2021 10:41The United Arab Emirates central bank sees increased risks of illicit financial flows emerging from the COVID-19 pandemic, including money-laundering and terrorism financing, it said in a report published on Sunday.
Money laundering is now a key issue in the German election, politician saysCNBC – Sep 20 2021 10:47German Bundestag member Fabio de Masi, from The Left party, discusses the federal investigation into the country's Financial Intelligence Unit and the impact of the inquiry ahead of the federal election.
Europol nabs 106 criminals involved in SIM swapping, money launderingHackRead – Sep 20 2021 21:21By Waqas Europol said that the suspects carried out a number of cybercrimes included phishing, SIM Swapping, and BEC (business email compromise.)  This is a post from HackRead[.]com Read the original post: Europol nabs 106 criminals involved in SIM…
Delayed anti-money laundering reform hurts banks and AustraliaAustralian Financial Review – Sep 20 2021 06:19Australian banks and fintechs have backed the expansion of the anti-money laundering regime saying banks have had to shoulder the burden for too long and further delays could impact Australia’s international standing and access to capital.
Basel AML Index 2021: An ounce of prevention worth a pound of effectiveness when it comes to countering criminals, championing compliance – CFCS | Association of Certified Financial Crime SpecialistsACFCS Financial Articles News – Sep 18 2021 03:10The Skinny: A global index on financial crime risks has issued its annual rankings, with the diminutive European principality of Andorra, taking the top spot, while the besieged and beleaguered Caribbean Island of Haiti, got the worst score. But…
Phishing attacks: Police make 106 arrests as they break up online fraud groupZDNet Asia Blogs – Sep 20 2021 14:42Organised crime operation used phishing and business email compromise attacks.
UK banking industry-funded police unit prevents £85m of fraudFinextra Research Headlines blog – Sep 20 2021 11:13A specialist police unit which targets the organised criminal gangs behind fraud prevented a further £85 million from being stolen in the first half of this year.
Mafia works remotely, too, it seems: 100+ people suspected of phishing, SIM swapping, email fraud cuffedThe Register – Security – Sep 21 2021 05:16Dare we say, these Euro cops ran mobprobe Police arrested 106 people suspected of carrying out online fraud for an organized crime gang linked to the Italian Mafia, Europol said on Monday.…
Police say scammers who used email fraud, SIM swapping are connected to Italian mafiaCyberscoop – News – Sep 20 2021 15:07Police in Europe have arrested more than 100 people who allegedly stole more than $11 million in a years-long fraud operation that law enforcement officials have linked to an Italian mafia group. Officials in Italy and Spain arrested 106 suspects who…
The Fuel That Powers A Wide Range Of Fraud: Credential StuffingForbes.com – Sep 20 2021 14:15Share to Facebook Share to Twitter Share to Linkedin Kevin Gosschalk, Founder/CEO of Arkose Labs is an industry expert on the evolving fraud and cybercrime landscape. Despite current defenses in place, attacks on user accounts are still happening at a…

Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

Silobreaker Financial Services Threat Alert

Sign up to receive strategic intelligence on the biggest threats facing the Financial Services industry.

Silobreaker
This website uses cookies.
See our privacy policy at www.silobreaker.com/legal