Banking

Two weeks after hackers tried to steal 13 million euros, Bank of Valletta goes offline again

The Maltese Bank of Valletta went down two weeks ago as hackers tried to steal 13 million Euros.

And now its systems have gone down again…


42 sec read

bitdefender.com

School district fails to reclaim $120,000 wired by bank to scammer

A school district in Indiana which had $120,000 transferred from its bank account after its email account was hacked, has failed in an attempt to reclaim the cash.

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

Hackers steal $13.5 million from Indian bank in global attack

Hackers planted malware on an automated teller machine (ATM) server belonging to an Indian bank as part of a criminal scheme which saw the theft of nearly 944 million rupees (US $13.5 million) in a co-ordinated attack across 28 countries last weekend.

Read more in my article on the Tripwire State of Security blog.


0 sec read

tripwire.com

Hackers siphon hundreds of millions of pesos out of Mexican banks through shadow transactions

A software vulnerability is suspected of being to blame for a hack which saw criminals transfer more than 300 million pesos (over US $15 million) out of Mexican banks.

Read more in my article on the Tripwire State of Security blog.


0 sec read

This Android malware redirects calls you make to your bank to go to scammers instead

Once installed the malware will intercept mobile calls you attempt to make to your bank, and instead direct them to a scammer.


44 sec read

tripwire.com

Hackers steal $60 million from Taiwanese bank using bespoke malware

A hacking gang abused the SWIFT banking network to steal $60 million after planting malware on a Taiwanese bank’s servers.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Banking trojan campaign uses commercial packers to target Brazilian users

A banking trojan campaign is using commercial packing platforms to evade analysis and thereby successfully infect unsuspecting users.

David Bisson reports.


1 min read

Publication of NukeBot trojan’s source code leads to new ‘operational’ samples

New “operational” samples of the NukeBot banking trojan have emerged months after its original creator published its source code.

David Bisson reports.


1 min read

Malware installs Signal as part of scheme to steal Mac users’ banking credentials

The new OSX/Dok Mac malware is mysteriously pushing the Signal private-messaging app onto victims’ mobile devices as part of a scheme to steal their banking credentials.

David Bisson reports.


2 min read

Europol busts 27 burglars for Black box-based ATM logic attacks

Europol has arrested 27 members of an international conspiracy that sought to commit ATM “Black box” attacks across Europe and parts of Scandinavia.

David Bisson reports.


1 min read

Bank robbers exploited SS7 weaknesses to drain 2SV-protected accounts

A group of thieves exploited weaknesses in Signaling System 7 (SS7) to drain users’ bank accounts, including those protected by two-step verification (2SV).

David Bisson reports.


1 min read

Smashing Security #009: False flags and hacker clues

The Lazarus malware attempts to trick you into believing it was written by Russians, second-hand connected cars may be easier to steal, and is your child a malicious hacker?

All this and more is discussed in the latest podcast by computer security veterans Graham Cluley, Vanja Svajcer and Carole Theriault.

Oh, and Carole gets Graham and Vanja to apologise for mistakes of their past…


37 sec read

Lazarus mob possibly behind malware attacks against Polish banks

A hacking gang known as the Lazarus Group might be responsible for malware attacks that have targeted Polish banks and other financial organizations.

David Bisson reports.


1 min read

Super Mario Run for Android? No, it’s malware

Attackers have created a fake version of Super Mario Run for Android in an attempt to trick unsuspecting smartphone users into downloading the Marcher trojan.

David Bisson reports.


1 min read

Tordow 2.0 Android banking trojan gains root access, mimics ransomware

Take care if downloading apps from third-party sites. The Tordow Android malware has been seen posing as Telegram, Pokemon Go and VKontakte.

David Bisson reports.


1 min read

Hackers stole $31 million from Russian banks in 2016, as FSB warns of foreign plot

As Russia’s central bank reveals hackers stole millions from accounts, the FSB warns of a foreign plot to destabilise the banking system.


1 min read