Lucene search
K

41 matches found

Krebs on Security
Krebs on Security
added 2025/10/22 5:21 p.m.16 views

Canada Fines Cybercrime Friendly Cryptomus $176M

Financial regulators in Canada this week levied $176 million in fines against Cryptomus , a digital payments platform that supports dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services. The penalties for violating Canada's anti money-laundering laws come ten months...

6.9AI score
Exploits0
CNVD
CNVD
added 2024/03/28 12:0 a.m.31 views

IBM Common Cryptographic Architecture Resource Management Error Vulnerability

IBM Common Cryptographic Architecture is a cryptographic platform from International Business Machines IBM. It provides a number of features to protect financial transactions. A resource management error vulnerability exists in IBM Common Cryptographic Architecture CCA versions 7.0.0 through 7.5....

7.5CVSS6.5AI score0.00648EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/11/17 12:0 a.m.6 views

The vulnerability of the software tool for processing and managing financial transactions conducted through the SWIFT international messaging system allows a perpetrator to disclose protected information or compromise the accessibility of that information, due to incorrect restrictions on XML links to external objects in the IBM Financial Transaction Manager for SWIFT Services.

The vulnerability of the software tool for processing and managing financial transactions conducted through the SWIFT messaging system is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability can allow a malicious actor to disclose protected...

7.5CVSS7.7AI score0.00816EPSS
Exploits0References3Affected Software1
Code423n4
Code423n4
added 2023/10/25 12:0 a.m.8 views

Rounding Bug in OracleLibrary.consult Impacting Pricing Accuracy and User Costs

Lines of code Vulnerability details Impact The rounding bug in the OracleLibrary.consult function has a significant impact on applications that rely on this function for price calculations, especially those involving asset swaps, collateral valuation, or other financial transactions. The bug caus...

7AI score
Exploits0
HackRead
HackRead
added 2023/06/26 3:27 p.m.12 views

Fintech’s Crucial Role in Reducing Cyber Threats

By Owais Sultan Fintech can reduce cyber threats by implementing robust encryption and authentication measures, enhancing security protocols to safeguard financial transactions and customer data. This is a post from HackRead.com Read the original post: Fintech’s Crucial Role in Reducing Cyber...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/05/01 10:15 a.m.13 views

How to protect your small business from social engineering

When Alvin Staffin received an email from his boss, he didn't question it. In the email, Gary Bragg, then-president of Pennsylvania law firm O'Neill, Bragg & Staffin, asked Staffin to wire $580,000 to a Bank of China account. Staffin, who was VP and in charge of banking, sent the money through as...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/10/28 11:1 a.m.45 views

Researchers Uncover Stealthy Techniques Used by Cranefly Espionage Hackers

A recently discovered hacking group known for targeting employees dealing with corporate transactions has been linked to a new backdoor called Danfuan. This hitherto undocumented malware is delivered via another dropper called Geppei, researchers from Symantec, by Broadcom Software, said in a...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/02 5:55 a.m.62 views

Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content

A "major" security issue in the Google Chrome web browser, as well as Chromium-based alternatives, could allow malicious web pages to automatically overwrite clipboard content without requiring any user consent or interaction by simply visiting them. The clipboard poisoning attack is said to have...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/31 12:42 p.m.43 views

Latest Mobile Malware Report Suggests On-Device Fraud is on the Rise

An analysis of the mobile threat landscape in 2022 shows that Spain and Turkey are the most targeted countries for malware campaigns, even as a mix of new and existing banking trojans are increasingly targeting Android devices to conduct on-device fraud ODF. Other frequently targeted countries...

0.9AI score
Exploits0
ThreatPost
ThreatPost
added 2022/04/07 1:46 p.m.341 views

SSRF Flaw in Fintech Platform Allowed for Compromise of Bank Accounts

A server-side request forgery SSRF flaw in an API of a large financial technology fintech platform potentially could have compromised millions of bank customers, allowing attackers to defraud clients by controlling their bank accounts and funds, researchers have found. A team at Salt Security’s...

9.1AI score
Exploits0References6
Hacker One
Hacker One
added 2022/03/09 3:16 p.m.49 views

Kraden: Business Logic Flaw in the subscription of the app

Summary: Hello Security Team Business logic vulnerabilities are flaws in the design and implementation of an application that allow an attacker to elicit unintended behavior. This potentially enables attackers to manipulate legitimate functionality to achieve a malicious goal. Steps To Reproduce:...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/12/27 8:30 a.m.23 views

New Android Malware Targeting Brazil's Itaú Unibanco Bank Customers

Researchers have discovered a new Android banking malware that targets Brazil's Itaú Unibanco with the help of lookalike Google Play Store pages to carry out fraudulent financial transactions on victim devices without their knowledge. "This application has a similar icon and name that could trick...

7AI score
Exploits0
Microsoft KB
Microsoft KB
added 2021/08/10 7:0 a.m.87 views

Cumulative Update 26 for Microsoft Dynamics 365 Business Central April'19 on-premises (Application Build 14.27.47563, Platform Build 14.0.47540)

None None...

5.4CVSS6.4AI score0.0095EPSS
Exploits0
ThreatPost
ThreatPost
added 2021/06/15 4:46 p.m.39 views

Microsoft Disrupts Large, Cloud-Based BEC Campaign

Threat hunters at Microsoft recently uncovered and disrupted infrastructure that powered a large-scale business email compromise BEC campaign. The infrastructure was hosted on multiple cloud platforms, which allowed it to stay under the radar for quite some time. “The attackers performed discrete...

6.4AI score
Exploits0References6
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/06/14 4:0 p.m.12 views

Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign

Microsoft 365 Defender researchers recently uncovered and disrupted a large-scale business email compromise BEC infrastructure hosted in multiple web services. Attackers used this cloud-based infrastructure to compromise mailboxes via phishing and add forwarding rules, enabling these attackers to...

6.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2021/05/03 2:36 p.m.52 views

Identifying the Person Behind Bitcoin Fog

The person behind the Bitcoin Fog was identified and arrested. Bitcoin Fog was an anonymization service: for a fee, it mixed a bunch of peoples bitcoins up so that it was hard to figure out where any individual coins came from. It ran for ten years. Identifying the person behind Bitcoin Fog serve...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2021/04/21 7:39 p.m.47 views

QR Codes Offer Easy Cyberattack Avenues as Usage Spikes

The use of mobile quick-response QR codes in daily life, for both work and personal use, continues to rise – and yet, most people aren’t aware that these handy mobile shortcuts can open them up to savvy cyberattacks. That’s according to Ivanti, which carried out a survey of 4,157 consumers across...

7.4AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/12/01 7:35 p.m.42 views

Cayman Islands Bank Records Exposed in Open Azure Blob

A Cayman Island investment firm has removed years of backups, which up until recently were easily available online thanks to a misconfigured Microsoft Azure blob. The blob’s single URL led to vast stores of files including personal banking information, passport data and even online banking PINs —...

6.6AI score
Exploits0References7
CISA
CISA
added 2020/11/24 12:0 a.m.21 views

Online Holiday Shopping Scams

With more commerce occurring online this year, and with the holiday season upon us, the Cybersecurity and Infrastructure Security Agency CISA reminds shoppers to remain vigilant. Be especially cautious of fraudulent sites spoofing reputable businesses, unsolicited emails purporting to be from...

6.7AI score
Exploits0References8
Krebs on Security
Krebs on Security
added 2020/02/14 6:48 p.m.52 views

A Light at the End of Liberty Reserve’s Demise?

In May 2013, the U.S. Justice Department seized Liberty Reserve, alleging the virtual currency service acted as a $6 billion financial hub for the cybercrime world. Prompted by assurances that the government would one day afford Liberty Reserve users a chance to reclaim any funds seized as part o...

6.7AI score
Exploits0
Rows per page
Query Builder