Tech Library is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


The Lure of PSD2: Anomali Threat Research

by Anomali

Jan 23, 2020

While PSD2 Legislation Aims at Reducing Payment Fraud for the Financial Industry, Threat Actors See an Opportunity to Lure New Phishing Victims

PSD2 is a directive aimed at regulating payment services with the intention to make cross-border payments in the EU as easy, efficient, and secure as payments within a member state. PSD2 builds on the previous legislation, and the UK Financial Conduct Authority (FCA) has agreed to a phased roll-out plan to full compliance by March 2021. As efforts within the financial sector work toward implementation, cyber threat actors and groups are using PSD2 as an opportune theme to target and strike.

This whitepaper highlights recent notable findings to raise awareness of malicious activity across financial institutions, electronic money institutions, and payment institutions throughout Europe. We'll cover:

• Key findings and active threats
• Analysis of malicious PSD2 lure tactics
• IOCs for your security teams to proactively monitor

Read the full report to reduce the potential impact of PSD2 phishing lures.