Data security

Part of the growing "phishing-as-a-service" economy, the Spiderman kit offers novice hackers sophisticated tools to target customers of major EU institutions.

The DOJ says the Ukrainian national helped coordinate Russian state-sponsored DDoS attacks against banks internationally.

The lawsuit alleges the fintech giant secured its own corporate data with strong MFA while leaving client systems vulnerable to compromise.

While overall payments declined, the financial sector remained the top payer to cybercriminals, surpassing both health care and manufacturing.

More than 400,000 consumers may be affected after Marquis Software Solutions suffered a breach traced to a bug in SonicWall software disclosed last year.

While banks welcome the "whole-of-government" approach that led the effort, private sector takedowns remain difficult without federal warrants.

The Troy, Michigan-based lender and servicer faces at least seven lawsuits over a hack in June allegedly perpetrated by a known ransomware gang.

Regulators officially ended the high-profile enforcement action over the 2020 breach, a move applauded by security leaders fearing personal liability.

Investigators found text messages, photos of cash and a conspirator wearing a diamond Truist logo ring while unraveling the $1 million fraud attempt.

Kunal Mehta, also known by the alias "Shrek," used shell companies and bulk cash drops to clean millions for a cybercrime ring that stole $263 million.

A "spike in unusual traffic" caused service degradation for the infrastructure giant, disrupting digital banking for customers.

The bank is adding trusted contacts, specialized teams and new tech against scams, but consumer advocates say reimbursement is the key missing piece.

The agreement, if approved by a federal judge, would end litigation over two distinct cybersecurity incidents in 2021 which affected over 2 million customers.

The Consumer Financial Protection Bureau has seen a rapid drop in the effectiveness of its cybersecurity program, according to a new report from the Fed's Office of Inspector General.

The U.K. bank's "Scam Intelligence" tool uses Google's Gemini to analyze images and texts for red flags, aiming to reduce losses from authorized push payment fraud.

The global financial services company is providing BaaS infrastructure to the digital asset branch of investment platform WisdomTree.

Banks should seize the opportunity to assert themselves as a key partner for consumers when it comes to verifying their identities across multiple platforms and services.

A think tank report details setbacks in U.S. cyber strategy, from shuttered partnerships and staff cuts to the expiration of key info-sharing laws.

The bank asks a federal court to toss claims from five certified classes, arguing victims have been paid and that fraudsters are included in the suit.

New guidance outlines specific due diligence and oversight steps banks must take, reinforcing that they are ultimately accountable for vendor failures.