India’s central bank mandated use of .bank domains to enhance trust – but its registry leaked sensitive info
Open API could reveal everything an attacker needs to impersonate bank officials
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Open API could reveal everything an attacker needs to impersonate bank officials
GitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentials
Global bank's devs have some cleaning up to do after cloud creds found in website code Computer security boffins have conducted an analysis of 10 million websites and found almost 2,000 API credentials strewn across 10,000 webpages.…
Banks Must Secure APIs, Vet Partners and Prepare for Open Finance Threats in 2025Open finance is revolutionizing banking, but it's also expanding the attack surface. Discover the critical API, data privacy and third-party risks facing financial institutions in 2025 - and how to build a secure future.
Enhancing API security for financial institutions Partner Content Open banking has revolutionized financial services, empowering consumers to share their financial data with third-party providers, including fintech innovators.…
Tom Kellermann's Annual Report on Key Threats to Financial SectorZero days. Supply chain attacks. APIs and cloud environments as growing threat vectors. These are among the topics discussed in this seventh annual Modern Bank Heists report, and author Tom Kellermann discusses their impact on financial institutions - and which defensive gaps need to be filled now.
The number of DDoS-related incidents targeting APIs have jumped by 30x compared with traditional Web assets, suggesting that attackers see the growing API landscape as the more attractive target.
Academics Build AI Agent With OpenAI to Execute Phone Scams at ScaleHackers can use OpenAI's real-time voice API to carry out for less than a dollar deepfake scams involving voice impersonations of government officials or bank employees to swindle victims, said researchers at the University of Illinois Urbana-Champaign.
Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.