Banks Drop OTPs, Major Cyber Heist, Spying Spouses Arrested
Digitization and cybersecurity go hand in hand. They are like the two sides of the same coin. If you wish to reap the benefits of digital advancements, then you must educate yourself about cybercrimes and threat actors. The implementation of SPF, DKIM, and DMARC helps mitigate risks like cyber heists and privacy breaches, enhancing email security for financial institutions and beyond.
We bring to you our weekly dose of global cyber news so that you can steer clear of any such cyber mishaps. In today’s edition, you will get to know why Singaporean banks have decided to eliminate OTPs for good. On the other hand, an elderly couple in Australia has been arrested for espionage. Also, a major cyber heist has shaken the Indian banking system to the core.
Keep reading to get into the juicy details! Lastly, Apple has once again warned its users against potential spyware attacks.
Singapore banks decide to give up on one time passwords!
In the next three months, Singapore banks will stop using OTPs or one-time passwords for their retail customers. This significant step has been taken with an aim to keep malicious phishing attempts at bay.
The Association of Banks in Singapore (ABS) and The Monetary Authority of Singapore (MAS) have made an announcement regarding the progressive phasing out of OTPs across all the major Singapore retail banks.
The new authentication system will now involve digital tokens instead of one-time passwords. Customers will now have to activate digital tokens on their smartphones. The same digital tokens will be used for bank account logins. The use of digital tokens eliminates OTP generation and thereby easily thwarts phishing attempts. If there isn’t any OTP, then there will be no risk of threat actors stealing the data. Also, the scammers won’t be able to compel naive customers to share their OTPs.
The Singaporean authority believes that this major change will bring down the rate of cybercrimes in the banking sector. They urge the customers to activate digital tokens at the earliest to fortify the authentication process and safeguard their hard-earned money from scammers.
Cyber heist worth INR 16.71 crores shook Nainital Bank in India
The Nainital Bank Limited in Noida Sector 62 got the biggest shock ever when the IT manager realized about the cyber heist. A staggering 16.71 crores have been stolen by cybercriminals by hacking into the servers of the Indian bank.
Sumit Shrivastava, the IT manager, discovered about the heist back on 17th June while he was cross-checking the balance sheets. He came across a discrepancy of INR 3.60 crores in the Real Time Gross Settlement account which made him suspicious. Soon, the bank authorities realized that INR 16.71 crores had been transferred to 84 different accounts within just 5 days.
Nainital Bank has approached the Indian Computer Emergency Response Team or CERT-IN for an in-depth investigation. The IT manager has also filed a complaint against the hackers with the Noida Cyber Crime Police Station.
As per the Additional Commissioner of Police, the threat actors had managed to access the login ID and password of the bank manager. A special investigation team is working closely with the bank authorities to get hold of the culprits.
A married couple got arrested for engaging in espionage for Russia!
Kira and Igor Korolev, a married couple based in Australia, have been arrested for engaging in espionage activities for Russia. The 40-year-old wife was also an Australian Defence Force (ADF) army private. They have been residing in Australia for the past decade. The authorities arrested them from their residence in Brisbane. Together, the couple was spying to gain access to ADF data.
Kira often took long work leaves to travel to Russia. During that time, her spouse would log into her official ID to access sensitive information and share it with her. The Australian Federal Police believes that Kira and her partner have misused her ADF login credentials multiple times to gain access to ADF-related data.
Apple issues spyware attack warnings across 98 countries!
Once again, iPhone users are concerned about their data and privacy since Apple has issued another potential spyware attack warning. The tech giant has been tight-lipped about the suspected attackers, though.
The first such warning was issued in April 2024 across 92 nations. The Apple warning reads, “Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple ID-xxx—.”
Indian users have confirmed receiving the same alerts. Reportedly, Indian journalists and politicians received the earlier slot of warnings as well.
Apple, while emphasizing on its effective threat detection methods, has urged its users to stay vigilant and not divulge any personal details.
