Chris Stokel-Walker reports: It’s better known as being the world’s largest wealth fund, managing an estimated $1 trillion of assets created off the back of Norway’s vast oil reserves earning plenty of money on the markets. But Norfund is also the latest victim of a major cyberattack that has made the fund’s reserves a little…
Category: Financial Sector
Capital One Judge Skeptical That Breach Report Is Privileged
Law360 reports: A Virginia federal magistrate judge tackling discovery issues in the sprawling litigation over Capital One’s massive 2019 data breach appeared unconvinced during a hearing Friday morning that consumers suing the bank are barred from seeing a cybersecurity firm’s report on the event. Consumers within the multidistrict litigation are pushing to get hold of an incident…
How hackers are updating the EVILNUM malware to target the global financial sector
Shannon Vavra reports: Hackers behind a series of targeted financial attacks have been updating their malware to better evade detection over the last year, according to new Prevailion research slated to be published Wednesday. Since at least February 2019, the hackers, who have begun impersonating CEOs and banks in their lure documents, have introduced at…
Maze ransomware operators claim to have stolen millions of credit cards from Banco BCR
Lawrence Abrams reports on a new “press release” from the Maze ransomware operators. The release was posted yesterday and claims that the Maze Team had successfully attacked Banco BCR, the state-owned bank of Costa Rico in August, 2019 The attackers claim that the bank never complied with its obligations to notify other banks and regulators….
Citigroup gets computer fraud claim tossed in email hack case
Sara Merken reports: A federal judge in Washington, D.C. has tossed a claim by a small law firm accusing Citigroup Inc of aiding and abetting a hacker who posed as its managing partner and stole a $60,000 payment that should have gone to the firm in violation of a federal computer fraud law. Read more…
South Korean and US payment card details worth nearly $2M up for sale in the underground
Shawn Tay writes: Group-IB, a Singapore-based cybersecurity company, has detected a dump containing details for nearly 400,000 payment card records uploaded to a popular darknet cardshop on April 9. The database was comprised almost entirely of the payment records related to banks and financial organizations in South Korea and the US. It should be noted…