Security News

Jumio announced that the company acquired the AML platform from Beam Solutions, a San Francisco-based startup focused on transaction monitoring and KYC. Jumio will integrate Beam's suite of AML solutions into its current KYX Platform to further strengthen the company's position in the anti-financial crime marketplace. Beam's mission is to make the financial system safer by applying creative technological innovation to the detection and reporting of suspicious financial activity that facilitates money laundering, terrorism and human trafficking.

After several months of working from home, with no clear end in sight, financial risk and regulatory compliance professionals are struggling when it comes to collaborating with their teams - particularly as they manage increasingly complex global risk and regulatory reporting requirements. "During the pandemic, financial firms quickly adapted to major changes, although not without some operational and technology weaknesses emerging," said Alex Tsigutkin, CEO AxiomSL. "Indeed, businesses might never return to the 'old normal', and that has made building data- and technology-driven resilience much more pressing than before the crisis. Our clients have been experiencing heightened regulatory pressures," he continued.

The financial services sector is outperforming other industries, both in its adoption of database DevOps, and its use of monitoring to track database performance and deployments, a newly released edition of Redgate's 2020 State of Database Monitoring Report has revealed. The report shows that 61% of those in financial services deploy database changes once a week or more, compared to 43% across other sectors, and 52% deploy multiple times per day or week, up from 35% in other sectors.

Dubbed PyVil, the new remote access trojan goes after passwords, documents, browser cookies, and email credentials, says Cybereason. A new remote access trojan is aiming at financial technology companies in the UK and European Union to capture sensitive information through keylogging and screen captures.

Networking equipment maker Cisco has released a new version of its Jabber video conferencing and messaging app for Windows that includes patches for multiple vulnerabilities-which, if exploited, could allow an authenticated, remote attacker to execute arbitrary code. Two of the four flaws can be exploited to gain remote code execution on target systems by sending specially crafted chat messages in group conversations or specific individuals.

An adversary known for targeting the fintech sector at least since 2018 has switched up its tactics to include a new Python-based remote access Trojan that can steal passwords, documents, browser cookies, email credentials, and other sensitive information. In an analysis published by Cybereason researchers yesterday, the Evilnum group has not only tweaked its infection chain but has also deployed a Python RAT called "PyVil RAT," which possesses abilities to gather information, take screenshots, capture keystrokes data, open an SSH shell and deploy new tools.

Due to the nature of cyber-physical systems, incidents can quickly lead to physical harm to people, destruction of property or environmental disasters. The funcion of CPSs. CPSs are defined as systems that are engineered to orchestrate sensing, computation, control, networking and analytics to interact with the physical world.

McAfee announced the appointment of Venkat Bhamidipati as executive vice president and chief financial officer effective September 2, 2020. Bhamidipati joins McAfee from Providence, a healthcare company with $25B in annual revenues, where he was executive vice president and chief financial officer.

Hungary is among numerous countries in Eastern Europe poised for an explosion in real-time payments growth, with several Hungarian banks and intermediaries leveraging ACI's unrivalled Real-Time Payments solution to capitalize on the expected rise in digital transaction volumes. Long-standing customer OTP Bank is leveraging ACI's Real-Time Payments solution to connect to the scheme; the solution offers a complete range of capabilities for processing real-time payments, including origination, processing, clearing, fraud detection and connectivity-all on a single platform.

A hack-for-hire group has been targeting organizations in the financial sector since 2012, for cyber-espionage purposes, Kaspersky's security researchers reveal. Tracking the hacking group since 2018, Kaspersky was able to link its activity to the Powersing, Evilnum and Janicab malware families, thus suggesting that the threat actor might have been active since at least 2012, yet it continues to develop its toolset.