Joseph Lazzarotti of JacksonLewis writes: Yesterday, New York’s Department of Financial Services (“DFS”) announced another enforcement action under the state’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R. Part 500 (“Reg 500”). According to the press release, OneMain Financial Group LLC (“OneMain”) will pay a $4.25 million penalty to New York State for alleged violations of Reg 500. In…
Category: Financial Sector
Following Lockbit Ransomware Hacking, BSI Fires Director of IT and Risk Management
Ruetir reports: PT Bank Syariah Indonesia Tbk or BSI at the Annual General Meeting of Shareholders (AGMS) in Jakarta, Monday (22/5/2023) decided to appoint a new Director of Information Technology (IT) and Director of Risk Management, namely Saladin D. Effendi and Grandhis Helmi H. . Previously, the Director of Information Technology (IT) was held by…
Only months after dealing with one problem, Academy Mortgage gets hit with a ransomware attack
Months after agreeing to pay $38.5 million to settle federal charges it violated the False Claims Act by improperly originating and underwriting mortgages insured by the Federal Housing Administration, Utah-headquartered Academy Mortgage now finds itself in the also-unenviable position of having its sensitive files dumped on the dark web by the AlphV (BlackCat) ransomware group….
Sentiment recovers $870K after negotiations with hacker
Ezra Reguerra reports: Lending protocol Sentiment has managed to recover the stolen funds from the recent hack by offering the hacker a bounty worth $95,000. In an on-chain transaction on the Arbitrum blockchain, Sentiment sent a message to the hacker offering $95,000 if the hacker returned the funds by April 6, urging the hacker to “do the…
Consumer lender TMX discloses data breach impacting 4.8 million people
Bill Toulas reports: TMX Finance and its subsidiaries TitleMax, TitleBucks, and InstaLoan have collectively disclosed a data breach that exposed the personal data of 4,822,580 customers. TMX is a public financial service that operates equities, fixed income, derivatives, and energy markets exchanges, with a business presence in the United States, Canada, the U.K., Australia, and…
Cyberattack on debt-buying giant exposes sensitive info on nearly 500,000 people
Jonathan Greig reports: Nearly half a million people had their sensitive financial information leaked during a cyberattack on NCB Management Services – a company that purchases debt. The Pennsylvania-based company sent out breach notification letters last week after discovering the attack on February 4. In documents filed with Maine’s Attorney General, the company said 494,969 people had…