#finsec — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #finsec, aggregated by home.social.

Dissent Doe :cupofcoffee: @[email protected] · 2024-10-15 · 12:28 UTC

Today's insider threat story concerns a ruling by the Australian Financial Complaints Authority that held HSBC liable for money a customer lost to a rogue employee who was a scammer.
#HSBC may now be liable for all of the losses incurred by their other customers who also lost money due to a scam in which the scammer used the bank's real messaging system and their access to customer account info to scam the customers out of their money.
https://www.theage.com.au/national/dragged-kicking-and-screaming-banking-giant-loses-battle-against-scam-victim-20241015-p5kide.html
Direct link to #AFCA decision: https://my.afca.org.au/searchpublisheddecisions/kb-article/?id=f9f8941f-7379-ef11-ac20-000d3a6acbb4
#databreach #fraud #insiderthreat #scam #FINSec

#hsbc #afca #databreach #fraud #insiderthreat #scam
Dissent Doe :cupofcoffee: @[email protected] · 2024-01-31 · 00:54 UTC

Hooray for NYS AG Letitia James. She has sued Citibank for poor security and failure to comply with #EFTA when consumers report #fraud or #theft.
Snippets from the press release:
"The OAG found that Citi’s systems do not respond effectively to red flags, such as scammers who are using unrecognized devices, are accessing accounts from new locations, or are changing banking passwords or usernames. Additionally, Citi systems do not flag and stop efforts to transfer funds from multiple accounts into a single account and then send tens of thousands of dollars out the door in minutes. Citi also does not automatically initiate investigations or report fraudulent activity to police or law enforcement authorities when consumers first report it to Citi."
"Under EFTA, banks such as Citi are required to reimburse their customers for money in their accounts that is lost or stolen through unauthorized electronic payments. However, Citi illegally exploited a narrow exception in these laws to deny consumer claims for reimbursement, resulting in millions of dollars in losses for New York consumers. Through this lawsuit, Attorney General James is seeking to stop Citi’s deceptive practices and to collect restitution for victims who were denied reimbursement in the last six years, penalties, and disgorgement. "
Press release: https://ag.ny.gov/press-release/2024/attorney-general-james-sues-citibank-failing-protect-and-reimburse-victims
Direct link to complaint: https://ag.ny.gov/sites/default/files/2024-01/citi-complaint.pdf
#FinSec #infosecurity #cybersecurity #UCC #enforcement

#efta #fraud #theft #finsec #infosecurity #cybersecurity