Lance Taubin, Kate Hanniford, and Kimberly Peretti of Alston & Bird write: The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated companies should “implement these controls whenever possible” and report any successful deployment of ransomware…
Category: Financial Sector
Russian Hackers Mounted Cyber Attack on German Banks, Bild Says
Patrick Donahue and Jake Rudnitsky report: A hacker group linked to the Russian state known as “Fancy Bear” conducted a cyber attack on critical German infrastructure and the country’s banking system in the past few days, Bild newspaper reported, citing unidentified Western intelligence sources. A spokesman for Germany’s BSI Federal Cyber Security Authority said the agency has…
New charges filed against Capital One hacker, trial postponed to 2022
Catalin Cimpanu reports: The US government has filed a superseding indictment against Paige A. Thompson, a former Amazon engineer accused of hacking Capital One and stealing the personal data of more than 100 million Americans. According to court documents filed earlier this month and obtained by The Record, the US Department of Justice has added seven new charges…
EpsilonRed ransomware group hits one of India’s financial software powerhouses
Catalin Cimpanu reports: Nucleus Software Exports, an Indian company that provides lending software to banks and retail stores, has suffered a major ransomware attack that crippled some of its internal networks and encrypted sensitive business information. The incident took place last Sunday, on May 30, according to a document the company filed on Tuesday with…
Two Carbanak hackers sentenced to eight years in prison in Kazakhstan
Catalin Cimpanu reports: Two members of the Carbanak (Cobalt) cybercrime group were sentenced today in a Kazakhstan court to eight years in prison for stealing from Kazakhstan banks. The sentencing was announced today by the Almaty city prosecutor’s office. The two hackers, whose names were not released, were found guilty of hacking into the IT systems of several Kazakh…
Klarna battles data breach with reports of leaked user info
Isabel Woodford reports: Consumers have raised the alarm about a data breach — including users’ names — at Klarna, Europe’s largest private fintech. The company, which is reportedly in the throes of closing a deal valuing it at $40bn, came under fire on Thursday after users complained they were being accidentally logged in as other people, given…