Phishing

Part of the growing "phishing-as-a-service" economy, the Spiderman kit offers novice hackers sophisticated tools to target customers of major EU institutions.

During cybersecurity awareness month (October), financial institutions have ramped up education on phishing, fraud and cyber hygiene. Here's what they're saying.

The five-part framework suggests both technical and governance solutions to protect consumers from losing money to scammers and fraudsters.

An email security company has found a 12-fold increase in the number of phishing emails it has seen since the advent of ChatGPT, and malicious models may be to blame.

The FBI, NSA and CISA highlighted the emerging dangers of AI-powered deepfakes in phishing campaigns and cataloged protections companies can deploy.

Any major news provides fraudsters the opportunity to take advantage of a frenetic situation. This time, their plea for customers' banking credentials seemed extra credible.

Security researchers recently infiltrated a cybergang that stole account credentials with convincing, spoof websites. Could an ABA-endorsed solution help?

The breach was quickly followed by fake text and app messages to customers that appeared to come from the challenger bank.

The two major tech firms were targeted in an intricate phishing scheme last week. One fended off the attack; the other was not so fortunate.

In the lead-up to a data breach, phishing is second only to use of stolen credentials in terms of how attackers infiltrate institutions. Here's what else you need to know.

Researchers recently described a scheme that allows affiliates to buy access to phishing materials. The case provides an insight into the methodical nature of some cybercrime.

Fraudsters sometimes target customers of credit unions and smaller banks because the institutions lack the cybersecurity resources of larger players.

A recent campaign targeting Quickbooks users claimed customers had their accounts suspended because of problems verifying their business information. It’s the latest example of scams that slither through multiple lines of defense.

As risk rises and budgets tighten post-pandemic, training all employees about security risks and conducting quarterly penetration tests helps to offset threats and potential losses.

Fraudsters have increased their attempts to steal data through email scams since much of the financial services sector moved to remote work when the pandemic began.

Executives and technology analysts offered a host of concerns that are likely to dog credit unions well into the new year.

Netwalker attacks are known to target victims using phishing emails disguised as COVID-19 updates from their organization, taking advantage of the heightened fears and anxieties that come with the current pandemic, says Stealthbits Technologies' Dan Piazza.

In a new twist on an old scam, cybercriminals have tried to get thousands of people to surrender their Wells bank account information by sending authentic-looking emails containing malicious links that lead to a fake website bearing the company's name.

In a new twist on an old scam, cybercriminals have tried to get thousands of people to surrender their Wells bank account information by sending authentic-looking emails containing malicious links that lead to a fake website bearing the company's name.