The Android.BankBot.495 malware was designed to read the victims information when they logged into their mobile banking app. Location: South Africa Adam also explains that we know that crime rises along with the temperature and how this can help better predict crime and danger. One of the attackers is now negotiating with the victims to return 80% of the stolen funds and keep the remaining 20% as a tip. On December 10, 2019, it was reported that Mellat, Tejarat, and Sarmayeh, Irans three largest banks, had been breached and that the attacker had published 15 million bank debit cards on social media in the aftermath of anti-government demonstrations. The malware has continued to evolve with later variants still in use around the world. On June 4, 2020 Coincheck, a Japanese digital currency exchange, paused remittances after unknown attackers gained access to Coincheck's domain registry service and fraudulently obtained user email addresses as well as personal data. On February 25, 2022, global insurance and reinsurance broker, Aon was hit by a ransomware attack, causing limited disruption to a number of their services. The Australian government and other member states of the Five Eyes alliance reportedly helped with response and recovery efforts. On July 25, 2020, hackers published data and personal information of 7.5 million users of Dave banking app. Date Breach First Reported: 7/24/2014. The hack appeared to occur at the same time as several South African banks reported internet problems believed to also be related to cyber attacks. On December 4, 2021, Bitmart, a crypto trading platform, experienced a major security breach, resulting in hackers withdrawing almost $200 million in assets. Attackers made multiple transfer requests from the Maltese bank to accounts in the UK, United States, Czech Republic, and Hong Kong.

Date Breach First Reported: 7/10/20. On February 28, 2022, the Moscow Stock Exchange and Sberbank, Russias largest lender, were hit by DDoS attacks that took their websites offline. On January 9, 2018, attackers attempted to use fraudulent SWIFT transactions to steal $110 million from Bancomext, Mexicos state-owned trade bank, but the money was ultimately recovered. On January 4, 2021, Juspay confirmed the hack. Launched in 2019, Cyber Polygon is an annual cybersecurity training exercise put on by BI.ZONE, in collaboration with the World Economic Forum (WEF) and Interpol. Following the contentious relocation of a Soviet-era statue in Tallinn, Estonia fell victim to a series of coordinated DDoS attacks against government, bank, university, and newspaper websites that lasted three weeks. On October 14, FireEye reported that FIN11, a financial cybercrime group active since 2016, has recently switched to ransomware as its primary mode of attack. The bank informed the German police, although no further information is available about the investigation. On August 23, 2019, it was reported that financial institutions in Bulgaria, Chile, Costa Rica, and Ghana were compromised by the Silence Group. The bank stated that they had identified a cybersecurity incident that had partially disabled their services.

A few months before the COVID-19 coronavirus outbreak, the WEF, along with the Johns Hopkins and the Bill and Melinda Gates Foundation, held a fake pandemic exercise on October 18, 2019 calledEvent 201,which specifically simulated a coronavirus pandemicto gauge global preparedness. So if you enjoy my newsletter or/and my website, please consider throwing some money into my tip jar! Location: Pakistan The Securities and Exchange Commission announced in September 2017 that hackers might have accessed inside information from the Edgar database, which contains market-sensitive filings for companies listed on U.S. stock exchanges, and used it to make illegal profits on share trades. Location: Eastern Europe On July 9, 2021, CNA Financial Corporation, a leading US-based insurance company, notified customers of a data breach following a March 2021 ransomware attack. Location: Bangladesh The Know Your Customer verification database was not password-protected, allowing anyone to access, alter, or download the information. They told him someone had smashed the back of his skull in with a cinderblock and that half his skull was gone from emergency surgery. Location: United Kingdom Researchers estimated that the botnet generated 23 megabits of data per second, not enough to cause long-lasting disruption to the targeted sites. The attempted theft could have cost the agency up to R800 million. Location: Mexico

Until recently, Silence had focused on Russia and the Commonwealth of Independent States. Proceeds were laundered through a separate crypto-currency exchange called YoBit. On April 17, 2022, the decentralised finance platform Beanstalk Farms lost $180 million in a cryptocurrency heist. Three other men were jailed in 2014. Location: Brazil Date Breach First Reported: 5/24/2021. On October 15, 2021, researchers discovered that Russian-linked TA505 was targeting financial institutions globally in a new malware campaign, tracked as MirrorBlast. Location: Unknown Date Breach First Reported: 5/4/2016. Location: Malta Edenreds payment platform operates across 46 countries and in 2018 they managed 2.5 billion payment transactions. On August 18, 2021, Liquid, a Japanese cryptocurrency exchange, was the target in a cyber attack that resulted in a loss of $97 million worth of digital coins. Location: Multiple On October 23, 2019, the South African Banking Risk Information Centre (SABRIC) reported a series of distributed denial-of-service attacks which targeted several public facing services across multiple banks in the country. In October 2018, the Indian subsidiary of the State Bank of Mauritius was targeted by attackers who attempted to steal $14 million through compromised IT systems. In July 2014, the pro-Russian group called CyberBerkut hacked into PrivatBank, one of Ukraines largest commercial banks, and published stolen customer data on VKontakte, a Russian social media website.

Location: United States, Germany In February 2015, reports indicated that records for almost 80 million customers were stolen from Anthem, a U.S. healthcare insurer, after attackers deployed a spearphishing email that gave access to ninety of the companys systems, including its back-end database.

In early 2011, a virus named Gauss was used to steal inside information from multiple Lebanese banks. Nasdaq said no data was taken, and there was reportedly no evidence of suspicious trades that could be based on information in the system. In August 2019, the UN Security Council Panel of Experts indicated DPRK-affiliated actors were behind the theft. In early 2010, National City Bank identified a number of former debit accounts that had been compromised. Date Breach First Reported: 1/26/2022. Attackers sent phishing emails to Upbit users in an attempt to steal their funds. Hong Kong refused a request to extradite one of the men to the United States in 2017. Date Breach First Reported: 3/29/2022. Location: Slovenia The group claimed to have stolen sensitive information including financial documents, correspondences with bank employees, account movements, balance sheets, and tax documents. And coincidentally, this Russian-based, WEF-backed annual cybersecurity exercise Cyber Polygon was first postponed to a later date. Date Breach First Reported: 3/10/21. On July 16, 2021, BackNine, an insurance tech start-up, exposed thousands of sensitive insurance applications in a data breach. In October 2017, the Korean Internet Security Agency thwarted an attack on 10 cryptocurrency exchanges in South Korea. Date Breach First Reported: 2/28/2022. In August 2019, the UNSC Panel of Experts indicated DPRK-affiliated actors were behind the attack. On March 3, 2021, researchers at Avast reported that at least 100 Italian banks were compromised in attacks using the Ursnif banking Trojan. The attack used sophisticated Business Email Compromise. On November 23, security researchers became aware of a resurgence in Gootkit infections in Germany. Location: United States Date Breach First Reported: 10/7/2014. The campaign used COVID-19 as a lure, such as sending booby-trapped document files named COVID 19 relief. Zeus Sphinx gained notoriety in 2015 for being used to target major financial institutions in the UK, and eventually in Brazil, Australia and North America. These days, he is only responsible for articles he writes and publishes in his own name. The database was stored in an unencrypted S3 bucket on Amazon Web Service. On April 11, 2022, researchers reported on the banking trojan Fakecalls, which has the ability to talk to victims and pretend to be a employee of the bank. On November 21, 2019, Edenred, a payment solutions provider, reported that it was infected by malware that affected a number of the organizations computers. In August 2018, it was reported that Cosmos Bank, the second-biggest cooperative bank in India, lost $13.5 million through ATMs in twenty-eight countries as well as through unauthorized interbank transactions. Since then, the malware has been used by several gangs to steal from dozens of financial institutions. Ronin is used to power the popular online blockchain game Axie Infinity. Chubb itself offers insurance to compensate those who suffer costs from data breaches. In August 2012, online payment service provider PayGate suffered a system breach where credit card and banking details were leaked. On December 1, 2021, blockchain startup MonoX Finance lost $31M when a threat actor exploited a vulnerability in the software the company uses to draft smart contracts. Date Breach First Reported: 2/3/2022. In a submission to the United Nations Security Council Panel of Experts, the Costa Rican government confirmed that an investigation was launched by the Office of the Public Prosecutors Division on Fraud. On February 3, 2021, Automatic Funds Transfer Services, a payment processor, suffered a ransomware attack by a group called Cuba Ransomware. In May 2015, the Vietnamese bank Tien Phong announced it had blocked a fraudulent SWIFT transaction worth 1m several months before attackers successfully stole from the Bank of Bangladesh using the same method. On May 14, the U.S. Secret Service Bulletin alerted citizens to multiple fraudulent claims targeting state unemployment benefit programs. On July 30, 2020, Rwanda Investigation Bureau (RIW) revealed that they had arrested a hacker suspected of stealing Rwf 22.5 million from Nesen Industry Company's bank. With access to the dispenser controller's USB port, outdated or modified firmware could be installed to bypass the encryption and make cash ATM withdrawals. Location: United States Under the Bank Secrecy Act (BSA), financial institutions are required to have dedicated compliance personnel responsible for reporting suspicious transactions and potentially fraudulent activity to the U.S. government. In May 2018, Banco de Chile suffered a $10 million theft after the attackers used destructive software as cover for a fraudulent SWIFT transfer. On December 3, 2019, 3 private equity firms in the UK and Israel had 600k stolen by attackers, known as the The Florentine Banker, through a sophisticated business email compromise scheme. On November 14, two Venezuelan men were found guilty of jackpotting, where they installed malicious software or hardware on ATMs to force the machines to dispense huge volumes of cash on demand. Location: United States Date Breach First Reported: 4/6/2021. Date Breach First Reported: 12/6/2018. The FBI and U.S. financial regulators investigated the incident, but no arrests were reported. Claiming over 30,000 victims within the US, the large-scale cyberattack on Microsoft Exchange servers was first discovered by a security testing firm on January 6, 2021. However, the 2022 Concept section in the Cyber Polygon About page was recently deleted, which suggests that the central theme may or may not be reconsidered. Type: Data breach, disruption. Date Breach First Reported: 1/1/2015, Method: Multiple: malware, phishing and browser vulnerabilities Carrefour, 7-Eleven, Heartland Payment Systems, and JC Penney were among their other targets, together losing $300 million as a result of the scheme. Date Breach First Reported: 11/6/2017. On August 18, 2020, payments processor Juspay's was hacked through a compromised server, resulting in the leak of over 100 million debit and credit card users. Location: North Korea Coincidence? Location: United States Earlier in 2020, hackers broke into SolarWinds' "Orion" system, an IT-management instrument used by multiple U.S. government agencies and many major companies. Location: N/A Starting in mid-December 2020, cybercriminal groups linked to FIN11 and the Clop group began exploiting multiple zero-day vulnerabilities in Accellion's legacy File Transfer Appliance. Location: India

In January 2008, a junior trader at the French bank Socit Gnrale executed fraudulent transactions to cover up $7.2 billion in losses from risky futures trades. In August 2019, the UNSC Panel of Experts indicated DPRK-affiliated actors were behind the attack. FinCyber Initiative, Carnegie Endowment for International Peace. On July 10, 2021, Morgan Stanley, the American investment banking giant, reported a data breach tied to zero-day attacks on Accellion's legacy File Transfer Appliance. On June 25, Europol, British law enforcement, and Dutch law enforcement officials arrested six individuals for cryptocurrency theft amounting to 24 million (over $26 million). Location: South Africa Date Breach First Reported: 9/22/2021. Ursnif has been deployed in a new campaign that specifically targets banks in Japan. Date Breach First Reported: 10/24/2019. The fourth international cybersecurity training focussed on digital resilience in the cloud age. In June 2019, at least three private Bangladeshi banks were compromised by major cyberattacks, with one, Dutch Bangla Bank Limited (DBBL), losing as much as TK 25 crore (around $3 million). On October 29, 2018, Bank Islami in Pakistan detected a cyber attack on its international payment card network. On September 14, 2007, online brokerage firm TD Ameritrade revealed that its database was the target of a data breach that led to the theft of 6.3 million customer account records. Date Breach First Reported: 11/2/2018. In May 2016, hacktivists briefly took down the Bank of Greeces website, and later did the same to the central banks of Mexico, Panama, Kenya, and Bosnia and Herzegovina. On September 8, 2021, the websites of various New Zealand financial institutions and the national postal service were down due to a suspected cyber attack. We warned you on this blog that get your money out of banks now Who has ears to ears will act until no one can do take money out of banks.

Date Breach First Reported: 12/1/20, A new remote access tool (RAT) has become prevalent in a new campaign against cryptocurrency users. Reports suggest that the malware also targeted apps such as Uber, Netflix, and Twitter using phishing tactics. A British hacker named Daniel Kaye was eventually sentenced for the crime after claiming to have been funded by a senior official at Cellcom, another Liberian network provider, to disrupt its competitor Lonestar. Location: South Africa, Angola, Kenya, Lesotho, Malawi, Mozambique, Namibia, Swaziland, Zimbabwe