In recent years, several major cyberattacks targeted critical infrastructure in Australia, including a major telecommunication company, which suffered a devastating data breach in September 2022. Soon after this cyberattack, Australia’s biggest health insurer also faced a ransomware attack in October 2022 that caused systems to go down. Customers could not access services through the company’s website or app.

Andy Thompson, Offensive Security Research Evangelist at CyberArk Labs, returns to Trust Issues for a dive with host David Puner into the latest developments in the world of ransomware. With ransomware events on the rise, Thompson sheds light on the alarming trend of data exfiltration and double extortion. But what’s causing this surge? Thompson connects the dots between the rise of digital identities and the increasing frequency of ransomware attacks.

In today’s digital world, online businesses face challenges in acquiring customers, meeting their demand for secure transactions, ensuring KYC compliance and dealing with the rising cases of fraud.

For online gaming, player onboarding and Know Your Customer (KYC) processes are critical components of player engagement, retention, and compliance. Effective onboarding ensures that players can easily and quickly start playing games, while KYC helps protect operators from fraud, money laundering, and underage gambling. However, these processes can also create friction for players, leading to drop-offs and abandonment.

Twitter’s recent decision to turn off SMS two-factor authentication (2FA) for non-Twitter Blue users created a stir. While media and tech pundits questioned the company’s motives, many users complained of losing a universal security measure behind a paywall.

One of the guiding principles for organisations, whether they are major corporations or small firms, is to ensure compliance. Enforcing compliance helps organisations to adhere to fraud prevention guidelines, identify rule infractions, and shield a corporation from unwarranted penalties and legal action. PAN verification is one such crucial process before onboarding consumers, clients, and third parties in order to remain compliant and within the law.

In the previous blog post, we described how the Docker research started and showed how we could gain a full privilege escalation through a vulnerability in Docker Desktop. In this follow-up blog post, we will show the other vulnerable functions we were able to exploit.

As a service provider for obligated organizations, it is essential to understand the factors driving the need for collaboration with regtech providers. It’s not just about adopting new technology; the real potential lies in effectively addressing anti-money laundering (AML) threats and streamlining regulatory compliance. Regulators consider regtech to be critical to modernizing the financial sector and ensuring clarity in supervisory expectations.