Two Canadian banks were hit by hackers over the weekend. The Bank of Montreal and the Simplii Financial direct banking brand of the Canadian Imperial Bank of Commerce are believed to have been affected. Some 90 thousand customers' data were apparently accessed by the attackers; the information exposed included both personal and financial information. In both cases the hackers contacted the banks Sunday and told them they'd stolen the data. The motive appears to be extortion; the hackers have threatened to release the data online.
The Cobalt gang is back at work despite its leader's arrest in Spain two months ago. Researchers at Group-IB have found spearphishing emails from the thieves pretending to be alerts from Kaspersky Lab. Employees of Russian and Eastern European banks are being targeted.
A wave of attacks hit cryptocurrencies Verge, Monacoin and Bitcoin Gold last week, inflicting more than $20 million in damages. The incidents are said to have been 51% attacks.
ESET warns of a new, harder-to-detect banking Trojan, "BackSwap." It works entirely within the Windows graphical user interface, and avoids the more usual browser process injection.
The FBI has issued a formal warning against VPNFilter, the Russia-linked campaign that's affecting routers. The Bureau advises everyone to reboot their routers.
Coca-Cola disclosed that it's sustained a data breach. A former employee took a hard drive containing about 8000 employees' records.
Facebook continues to struggle with content moderation. Papua New Guinea may block the platform for a month to get a handle on fake news.