Geek-Guy.com

Tag: financial

AI, APAC, Cloud Security, Compliance, Europe, Global Security News, Risk Management

Introducing the updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption

The financial services industry (FSI) is using AI to transform how financial institutions serve their customers. AI solutions can help proactively manage portfolios, automatically refinance mortgages when rates decrease, and negotiate insurance premiums for customers. However, this adoption brings new governance, risk, and compliance (GRC) considerations that organizations need to address. To help FSI customers…

Read more →

AI, Apps, Compliance, Data Breaches, Global Security News, Network Security, Risk Management

Banks Face a Growing AI Risk at the Database Layer

Financial institutions are rapidly deploying AI, but new research suggests many banks may be securing the wrong layer of the stack.  Liquibase researchers warn that while organizations focus heavily on AI models and APIs, the database layer may be one of the most exposed parts of modern financial infrastructure.  “Governance for agents has to move…

Read more →

AI, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, Risk Management

FIRESIDE CHAT: Cyber insurers deepen SMB security role as supply chain attacks spread

The cyber insurance industry set out to manage financial risk. Along the way, it has quietly became the security operations provider for a significant share of American small businesses. An $11 billion acquisition agreement announced earlier this year suggests it intends to stay in that role. Related: No easy AI security fixes I sat down…

Read more →

AI, Global Security News

Sage Acquires Doyen AI to Speed Finance Implementations

Sage, an accounting, financial, and HR technology provider, has acquired Doyen AI, an AI-focused company that aims to make customer onboarding and implementation faster, simpler, and more accurate for finance teams. The deal expands Sage’s AI strategy with tools designed to automate and streamline implementation workflows, helping customers reduce onboarding complexity and accelerate deployment timelines.…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

Inside agenteV2: How Brazilian Attackers Use Fake Court Summons to Steal Banking Credentials in Real Time 

A new phishing campaign targeting Brazilian users demonstrates how modern financial malware has evolved from simple credential theft into full-scale, operator-driven fraud platforms. Disguised as a judicial summons, this campaign leverages social engineering, multi-stage malware delivery, and real-time remote access capabilities to compromise victims and actively assist attackers in financial theft.   For organizations, the implications extend beyond individual users. Employees accessing corporate…

Read more →

AI, Exploits, Global Security News, Risk Management

DataVisor brings conversational AI agents to fraud and AML operations

DataVisor has announced Vera, a suite of conversational AI agents designed to combat financial crime. Vera enables institutions to manage risk using natural language, allowing teams to issue instructions that AI agents execute across the fraud and AML lifecycle. By reducing manual workflows, the platform supports a more efficient and adaptive operating model for modern…

Read more →

Global Security News, malware

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and…

Read more →

Cybersecurity, Global Security News

MITRE releases a shared fraud-cyber framework built from real attack data

Financial fraud losses in the United States reached $16.6 billion in 2024, up from $4.2 billion in 2020. Behind those numbers is a structural problem: the teams responsible for stopping fraud, fraud investigators and cybersecurity analysts, have historically operated separately, using different tools, different terminology, and different mental models of how attacks unfold. The MITRE…

Read more →

Global Security News

Beyond the billion-dollar banking oversight: How process intelligence can surface vital warning signs

GUEST OPINION: When one of Australia’s Big Four financial institutions recently self-reported over $1 billion in potentially fraudulent loans, the industry’s focus immediately turned to the sophistication of the bad actors. But for those of us looking at the mechanics of global banking, the more pressing question isn’t how the documents were doctored, it’s how…

Read more →

AI, Global Security News

Microsoft releases open-source toolkit to govern autonomous AI agents

AI agents can book travel, execute financial transactions, write and run code, and manage infrastructure without human intervention at each step. Frameworks like LangChain, AutoGen, CrewAI, and Azure AI Foundry Agent Service have made this kind of autonomy straightforward to deploy. The governance infrastructure to match that autonomy has lagged behind. Microsoft released the Agent…

Read more →

AI, APAC, Apps, Compliance, Cybersecurity, Global Security News, Risk Management

Preparing for agentic AI: A financial services approach

Deploying agentic AI in financial services requires additional security controls that address AI-specific risks. This post walks you through comprehensive observability and fine-grained access controls—two critical capabilities for maintaining explainability and accountability in AI systems. You will learn seven design principles and get implementation guidance for meeting regulatory requirements while deploying secure AI solutions. Financial…

Read more →

AI, Compliance, Global Security News, Risk Management

2025 FINMA ISAE 3000 Type II attestation report available with 183 services in scope

Amazon Web Services (AWS) is pleased to announce the issuance of the Swiss Financial Market Supervisory Authority (FINMA) Type II attestation report with 183 services in scope. The Swiss Financial Market Supervisory Authority (FINMA) has published several requirements and guidelines about engaging with outsourced services for the regulated financial services customers in Switzerland. An independent…

Read more →

Cybersecurity, Global Security News, Risk Management

Healthcare organizations are accepting cyber risk to cut costs

Healthcare organizations are cutting cybersecurity budgets under financial pressure even as the threats targeting their systems intensify. A PwC survey of 381 global healthcare executives, conducted between May and July 2025, puts numbers to the gap between the risks the sector faces and the controls it has in place. Key findings (Source: PwC) Data protection…

Read more →

AI, Apps, Global Security News, Risk Management

Jack Dorsey shrinks Block to ‘intelligence‑native’ model, cutting 4,000 jobs

Block, the payments and financial services company led by Jack Dorsey, is cutting more than 4,000 jobs, nearly half its workforce, because AI tools have made a leaner organisation not just possible, but strategically preferable, Dorsey said in a letter to its shareholders. The cuts will reduce Block’s headcount from over 10,000 to just under…

Read more →

AI, Apps, Compliance, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

12.4 Million Accounts Exposed in CarGurus Leak

Millions of CarGurus users may have had their personal and financial data exposed after a notorious threat actor group published a massive dataset allegedly stolen from the automotive marketplace.  Attributed to the ShinyHunters extortion group, the leak includes 12.4 million records with about 70% of those being new data. “The ShinyHunters extortion group has published…

Read more →

AI, Europe, Global Security News, Russia

UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware

A Russia-aligned threat actor has been observed targeting a European financial institution as part of a social engineering attack to likely facilitate intelligence gathering or financial theft, signaling a possible expansion of the threat actor’s targeting beyond Ukraine and into entities supporting the war-torn nation. The activity, which targeted an unnamed entity involved in regional

Read more →

AI, APAC, Exploits, Global Security News, malware, Network Security

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

A new threat actor, UAT-9921, uses the modular VoidLink framework to target technology and financial organizations, Cisco Talos reports. Cisco Talos spotted a previously unknown threat actor, tracked as UAT-9921, using a new modular attack framework called VoidLink. The group targets organizations in the technology and financial services sectors. The flexible design of VoidLink suggests…

Read more →