A recently uncovered point-of-sale malware called "ModPipe" is targeting Oracle software used by thousands of restaurants and other businesses in the hospitality industry, according to researchers at ESET. This backdoor can then steal sensitive data, such as cardholder names.
A recently uncovered banking Trojan targeting Android devices can spy on over 150 apps, including those of banks, cryptocurrency exchanges and fintech firms, as a way to gather credentials and other data, according to an analysis by security firm Kaspersky.
COVID-19 accelerated everything else digital; why not fraud, too? In this latest CEO/CISO panel, cybersecurity leaders talk frankly about the pace and scale of new fraud schemes from business email compromise to card not present to insider risk.
Attackers have been actively exploiting a flaw in Rackspace's hosted email service to send phishing emails, bearing legitimate and validated domain names, as part of business email compromise scams, warns IT security testing consultancy 7 Elements. Rackspace tells customers it plans to fix the problem soon.
Fraud in the interactive voice response channel was growing before the pandemic. Since? IVR fraud has become "a fraudsters' playground," says Mark Horne, CMO of Pindrop. He shares a new account-centric defensive solution.
To mitigate the risks posed by ransomware attacks, enterprises need to move from file-based security to a behavior-based approach, says Jennifer Ayers, vice president of the OverWatch division of Crowdstrike.
Banking institutions are seeing a significant spike in multi-channel financial crimes. But Duncan Ash and Julio Gomez of Splunk say data and analytics can be key differentiators in the effort to protect sensitive financial data.
A majority of mobile finance apps lack the security controls and code hardening necessary to prevent applications from being compromised, according to recent analyst research. And relying on legacy methods - like network or perimeter protection that is incapable of detecting these kinds of attacks - can have dire...
Ransomware attacks remain the top cyber-enabled threat seen by law enforcement. But phishing, business email compromises and other types of fraud - many now using a COVID-19 theme - also loom large, Europol warns in its latest Internet Organized Crime Threat Assessment.
The Bad Bot Report investigates the daily attacks that sneak past sensors and wreak havoc on websites. Such activities include web scraping, competitive data mining, personal and financial data harvesting, brute-force login, digital ad fraud, spam, transaction fraud, and more.
In the 2020 Bad Bot Report you'll...
Operational resilience gives banks the ability to simplify and streamline technologies supporting important business services, leading to better customer outcomes.
Download IDC ANALYST CONNECTION: Establishing Operational Resilience to Achieve Customer Excellence and learn
What difficulties face banks whose...
Contact Centers serving financial and banking organizations have quite a challenge regarding the verification of consumers. This is multiplied
by having to deal with the abrupt change from a mix of online and in-person points of contact to the necessary requirement that consumer interaction happens without any...
In more than 60% of fraud cases, bad actors used a contact center -- frequently an IVR -- for pre-crime research. It's like casing a bank before a robbery -- only much easier.
View this guide to learn about how to catch and stop fraudsters in their tracks.