Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have issued a joint advisory warning about a year-long campaign by Iranian cyber actors aimed at infiltrating critical infrastructure organizations.
Axiom Bank is facing legal action due to alleged violations of the Bank Secrecy Act (BSA) and insufficient anti-money laundering (AML) controls, alongside concerns over inadequate risk management practices. The regulatory filing points to suspicious activities that went unchecked due to weak internal controls, exposing the bank to potential involvement in illegal financial activities.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation.
Revolut, which received a provisional UK banking licence in July, was at the center of nearly 10,000 complaints to Action Fraud, the UK's leading fraud and cybercrime reporter, according to BBC Panorama.
Cybersecurity researchers have uncovered a new threat to software supply chains that spans multiple programming ecosystems, including PyPI, npm, Ruby Gems, NuGet, Dart Pub, and Rust Crates. These entry points, which are typically used by developers to execute specific commands or load plugins, can be exploited by attackers to introduce malicious code.
Between 2014 and 2023, TD Bank faced serious allegations of having "long-term, pervasive, and systemic deficiencies" in its U.S. anti-money laundering (AML) policies, according to court documents. Despite multiple warnings from regulators and its internal audit group, the bank failed to take appropriate remedial action.
The Blockchain Security Standards Council (BSSC) has announced the appointment of its first board of directors, featuring key leaders from its founding member organizations. This milestone marks a crucial step in BSSC's mission to establish globally recognized security standards for blockchain technology, aiming to create a safer and more resilient ecosystem.
In a recent cyberattack, MoneyGram, the global money transfer service, fell victim to a data breach that exposed sensitive customer information. The hack, which was discovered earlier this month, compromised a significant portion of MoneyGram's transaction database, raising concerns about the safety of financial data within the company’s infrastructure. The breach has alarmed customers and regulators alike, with early investigations suggesting that the attackers accessed payment records, personal information, and potentially financial data belonging to thousands of MoneyGram users.
