On February 16, BlackCat added loanDepot to their dark web leak site, but without any data as proof. At the time, they claimed that LoanDepot had shown up in the negotiation chat, and had offered $6 million for the data and a decryptor, but allegedly claimed they could offer more after the weekend. But after…
Category: Financial Sector
Leading Mobile Banking App Hit by IntelBroker Hackers, Sensitive Data Up for Sale
Ashish Khaitan reports: The IntelBroker hacker group has claimed responsibility for a potential cyberattack on a popular (undisclosed) mobile banking app boasting over 10 million users. The threat actor, known for their prowess in exploiting vulnerabilities, posted details of the exploit on a hacker forum on Saturday, January 27, 2024. The post by IntelBroker, titled…
Attorney General James Sues Citibank for Failing to Protect and Reimburse Victims of Electronic Fraud
Imagine having a law on your side that actually helps you in the event your bank account is hacked or your funds are stolen by scammers, but the bank never tells you that you are protected by that law, and worse, does not comply with it. According to NYS Attorney General Letitia James, that’s pretty…
Ex-IRS contractor who leaked Trump’s tax returns sentenced to 5 years
Salvador Rizzo reports: A former IRS contractor who leaked a slew of confidential tax records filed by the wealthiest Americans, including those of President Donald Trump, was sentenced Monday to the maximum of five years in prison. Charles Littlejohn pleaded guilty last year to one count of unauthorized disclosure of income tax returns. Littlejohn, 38, admitted that he…
$2.4 trillion securities platform owner hacked. EquiLend admits “unauthorised access”
Ed Targett reports: Financial technology company EquiLend – the owner of a NGT [Next Generation Trading], a platform that executes $2.4 trillion of securities transactions each month – has confirmed “unauthorized access to our systems” on January 22. The incident has disrupted some of its services, it confirmed. “We took immediate steps to secure our…
Dutch SA Sanctions Credit Card Company for Failure to Perform Data Protection Impact Assessment
Kristof Van Quathem of Covington and Burling writes: In December 2023, the Dutch SA fined a credit card company €150,000 for failure to perform a proper data protection impact assessment (“DPIA”) in accordance with Art. 35 GDPR for its “identification and verification process”. First, the Dutch SA decided that the company was required to perform a DPIA…