The two major tech firms were targeted in an intricate phishing scheme last week. One fended off the attack; the other was not so fortunate.

A vast majority of IT leaders at banks want to ditch passwords for something better and safer, and many tech vendors are moving in that direction already. But it's easier said than done.

In the lead-up to a data breach, phishing is second only to use of stolen credentials in terms of how attackers infiltrate institutions. Here's what else you need to know.

Researchers recently described a scheme that allows affiliates to buy access to phishing materials. The case provides an insight into the methodical nature of some cybercrime.

Robinhood Markets' cryptocurrency arm was fined $30 million by New York's financial regulator after the brokerage was accused of violating anti-money-laundering and cybersecurity rules.

The National Crime Agency has seen a surge in so-called suspicious activity reports filed by banks and other regulated institutions in the U.K. since February. 

A class action said the company, which has suffered two breaches in the past year, also was responsible for a larger breach and “downplayed” the situation when it notified consumers.

Traditional banks already have the tools they need to win back consumers’ confidence, but they need to be smart about deploying them.

Tuesday’s announcement provides clarity to institutions that are trying to stay ahead of quantum computing’s threat to data security.

Fraudsters sometimes target customers of credit unions and smaller banks because the institutions lack the cybersecurity resources of larger players.