A new Android banking trojan has been found, targeting international banks from the United Kingdom and Italy (including in the U.S.). and five different cryptocurrency services. Twenty-two instances have been discovered, but more are expected. The malware, first detected at the end of October 2021, appears to be new and still being developed. It was ..
A Canadian teen has been arrested for their alleged role in the theft of roughly $36.5 million (CAD$46 million) worth of cryptocurrency from a single victim in the United States, according to the Hamilton Police in Ontario, Canada. The arrest was made following an investigation that started in March 2020 and in which the FBI ..
In less than half a year, banks in the United States will be required to notify federal regulators of serious cybersecurity incidents within 36 hours. The final version of this cybersecurity incident notification rule was announced on Thursday by the Federal Deposit Insurance Corporation (FDIC), the Federal Reserve, and the Office of the Comptroller of ..
American pizza chain California Pizza Kitchen (CPK) is notifying employees of a data breach that might have resulted in some of their personal information being accessed by hackers. The incident was identified on September 15, but the company says it needed several weeks to conclude its investigation. The company began sending out notification letters to ..
Threat hunting and detection company SnapAttack this week announced closing an $8 million funding round, just as it spun out of Booz Allen Hamilton. The funding round was led by Volition Capital. Booz Allen Hamilton and Strategic Cyber Ventures (SCV) also invested in the new independent company. SnapAttack promises an extensive library of labeled attacks, ..
UK-based identity verification and fraud prevention solutions provider GBG on Thursday announced that it has agreed to acquire Acuant in a $736 million deal. Acuant is based in California and it specializes in identity verification and Know Your Customer (KYC) and Anti-Money Laundering (AML) compliance. The acquisition, which is expected to close by the end ..
SecurityWeek will host its 2021 Security Operations Summit as a fully immersive virtual event on December 8, 2021. In this exclusive SecurityWeek virtual event, defenders from the trenches will share use cases, best practices, insights for adopting tools and processes, and war stories to help make security operations centers (SOCs) more effective and efficient. Attendees can immerse ..
A North Korea-linked threat actor tracked as TA406 has intensified its attacks in 2021, particularly credential harvesting campaigns, Proofpoint reports. The adversary, which security researchers also refer to as Kimsuky, Thallium, and Konni, has been targeting organizations in sectors such as education, government, media, and research, as well as other industries. According to Proofpoint, TA406 ..
The US Justice Department announced indictments Thursday of two Iranians who allegedly took part in an online “disinformation and threat” campaign to influence American voters in the 2020 presidential election. Mohammad Hosein Musa Kazemi, 24, and Sajjad Kashian, 27, conducted a cyber campaign “to intimidate and influence American voters, and otherwise undermine voter confidence and ..
Fears of software supply chain attacks escalated again this week with a new warning from Microsoft that it has caught Iranian threat actors breaking into IT services shops in India and Israel and using that access to hit the real targets. Two of Redmond’s premier threat hunting units — the Microsoft Threat Intelligence Center (MSTIC) ..