A survey of 600 executives and 120 fintechs/insurtechs across 13 countries reveals that financial firms face significant hurdles in realizing the full value of their cloud investments.

The U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) has issued an alert to assist financial institutions in identifying fraud schemes involving deepfake media created with generative artificial intelligence (GenAI). The alert outlines fraud typologies, provides red flag indicators to detect and report suspicious activities, and emphasizes reporting requirements under the Bank Secrecy Act.

Over the past six years, 18 states have enacted data privacy laws aimed at giving individuals more control over their personal information and limiting unnecessary data collection.

Financial regulators are taking action as financial firms increasingly depend on a small number of technology providers, which could pose significant risks to the UK financial system. While third-party tech services can boost sector competitiveness, disruptions such as cyber-attacks or power outages could affect multiple firms and consumers, threatening overall stability.

Cybersecurity experts are sounding alarms over a newly emerged tool called GoIssue, designed to facilitate mass phishing campaigns targeting GitHub users.

The Consumer Financial Protection Bureau (CFPB) has taken action against Navy Federal Credit Union, banning the institution from charging illegal surprise fees and mandating refunds exceeding $80 million to affected customers. In addition, Navy Federal must pay a $15 million civil penalty to the CFPB's victims relief fund.

North Korean state-sponsored group BlueNoroff, a subgroup of the Lazarus Group, has launched a new malware campaign called "Hidden Risk," targeting cryptocurrency and DeFi businesses. SentinelLabs researchers found that the campaign, active since July 2024, employs phishing emails and PDF-based lures with fake crypto news headlines to trick victims into clicking on malicious links.