Compliance

A breach at an auto lending compliance provider highlights third-party vendor risks and has triggered class action lawsuits against the firm.

New data shows a 21% jump in fraud attempts during Thanksgiving week, with automated bots and credential stuffing leading the charge.

Part of the growing "phishing-as-a-service" economy, the Spiderman kit offers novice hackers sophisticated tools to target customers of major EU institutions.

The DOJ says the Ukrainian national helped coordinate Russian state-sponsored DDoS attacks against banks internationally.

The lawsuit alleges the fintech giant secured its own corporate data with strong MFA while leaving client systems vulnerable to compromise.

While overall payments declined, the financial sector remained the top payer to cybercriminals, surpassing both health care and manufacturing.

More than 400,000 consumers may be affected after Marquis Software Solutions suffered a breach traced to a bug in SonicWall software disclosed last year.

While banks welcome the "whole-of-government" approach that led the effort, private sector takedowns remain difficult without federal warrants.

The Troy, Michigan-based lender and servicer faces at least seven lawsuits over a hack in June allegedly perpetrated by a known ransomware gang.

Regulators officially ended the high-profile enforcement action over the 2020 breach, a move applauded by security leaders fearing personal liability.