A report by the G7 Cyber Expert Group (CEG), chaired by the US Department of the Treasury and the Bank of England, addresses the cybersecurity risks posed by advancements in quantum computing and outlines essential steps for financial authorities and institutions to mitigate these risks.

Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have issued a joint advisory warning about a year-long campaign by Iranian cyber actors aimed at infiltrating critical infrastructure organizations.

Axiom Bank is facing legal action due to alleged violations of the Bank Secrecy Act (BSA) and insufficient anti-money laundering (AML) controls, alongside concerns over inadequate risk management practices. The regulatory filing points to suspicious activities that went unchecked due to weak internal controls, exposing the bank to potential involvement in illegal financial activities.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation.

Revolut, which received a provisional UK banking licence in July, was at the center of nearly 10,000 complaints to Action Fraud, the UK's leading fraud and cybercrime reporter, according to BBC Panorama.

Cybersecurity researchers have uncovered a new threat to software supply chains that spans multiple programming ecosystems, including PyPI, npm, Ruby Gems, NuGet, Dart Pub, and Rust Crates. These entry points, which are typically used by developers to execute specific commands or load plugins, can be exploited by attackers to introduce malicious code.

Between 2014 and 2023, TD Bank faced serious allegations of having "long-term, pervasive, and systemic deficiencies" in its U.S. anti-money laundering (AML) policies, according to court documents. Despite multiple warnings from regulators and its internal audit group, the bank failed to take appropriate remedial action.