Connect with us

NEWS

Fasoo AI Takes Aim at Banking’s Screenshot Blind Spot

Fasoo AI’s Smart Screen tool watermarks and blocks bank employee screenshots, targeting a leak method already tied to CrowdStrike and Coinbase breaches.

Published

on

Fasoo AI is selling banks and insurers a way to stop a leak no firewall catches: an employee holding a phone up to a monitor and photographing a customer’s account. The Seoul based data security firm calls the tool Fasoo Smart Screen (FSS), and it watermarks, blocks and logs screen captures across banking systems, call centers and remote desktops alike.

The launch lands months after insiders at CrowdStrike and Coinbase got caught doing exactly what Fasoo now promises to block. A phone camera can still lift an image off a screen. FSS just makes sure that image comes with a name attached.

The Screen Is Where Bank Security Stops

Financial institutions have invested significantly in protecting data at rest and in transit, yet the screen remains an unmanaged attack surface.

Jason Sohn, executive managing director at Fasoo AI, said that in announcing the product this week. Banks spend heavily on firewalls, encryption and data loss prevention (DLP) software. None of it governs the instant a number actually loads onto a monitor.

Fasoo’s own cited research ties that gap to real money. Insider incident costs have risen 109.6% since 2018, reaching an average of $22.2 million a year at North American organizations, according to the company.

The warning itself is not new. Almost a decade ago, New York’s then attorney general publicly urged JPMorgan Chase, Bank of America and Citigroup to tighten defenses after an identity theft ring recruited tellers from inside the industry.

R.J. Cross, a privacy advocate at the U.S. Public Interest Research Group, put the mechanics plainly. More employees with reach into customer data means “the higher the risk that access is going to be abused.”

How the Same Leak Played Out Three Times

Three incidents in fourteen months show exactly what Fasoo is trying to stop.

  1. December 2024: Bloomberg reported that a bank insider named Helms fed screenshots of customer statements and identification photos to a broker running a Telegram channel called Navy Wave, which drew more than 2,700 subscribers and exposed roughly 50 accounts before it was shut down. Helms pleaded no contest to 11 charges and was sentenced to ten years of probation.
  2. November 2025: CrowdStrike said it terminated an insider who leaked screen photos to a group calling itself Scattered Lapsus$ Hunters, which then falsely claimed the images proved a network breach. The insider had “shared pictures of his computer screen externally,” a spokesperson said, and no customer data was exposed.
  3. February 2026: The same group posted screenshots of Coinbase’s internal support tool on Telegram, briefly exposing customer emails, names, birth dates and crypto wallet balances before Coinbase confirmed the breach and the posts came down.

Three different sectors. Same method every time: legitimate access, a monitor, and no network alert built to catch it.

What Fasoo Smart Screen Blocks

The announcement lists four capabilities, and all four map directly onto the incidents above.

  • Dynamic watermarking – stamps a user’s name, timestamp and IP address across the screen, visibly or invisibly, the moment sensitive data loads.
  • Capture blocking – disables the Print Screen key, snipping tools and screen recorders, enforced by user, application or web address.
  • Audit logging – keeps a record of every capture attempt for compliance reviews and internal investigations.
  • Cross environment coverage – runs on endpoints, virtual desktop infrastructure (VDI) and remote work setups, so the policy follows the session rather than the device.

Sohn described the goal as protecting customer information “at its most vulnerable point: when it’s being displayed on a user’s screen.” Fasoo Smart Screen blocks capture tools and applies live watermarks across web pages, applications and enterprise systems, the company says.

That cross environment piece matters more than it sounds. Much of banking’s back office, contact center and offshored work already runs on virtual desktops, where the institution has thin visibility into what outsourced staff do with the data they can see. A watermark travels with the session even when the vendor doesn’t answer to the bank’s own IT department.

The Insider Math Banks Are Now Facing

What the Data Shows

Fasoo’s own number is not an outlier. Independent research points in the same direction.

Metric Figure Detail
Average insider incident cost, financial services (2023) $20.68 million Per Exabeam’s compilation of Ponemon and Fortinet data
Average annual cost of insider incidents, global $19.5 million Up from $17.4 million the prior year, per Ponemon Institute and DTEX
Finance sector breaches caused by insiders 44% 55% of those from simple data misdelivery, not theft
Average time to contain an insider incident 67 days Down from 86 days in 2023

The finance numbers come from 44% of finance breaches tracing to insiders, a share driven partly by how fast a stolen account converts to cash compared with almost any other type of stolen data.

What Regulators Require

Fasoo frames the tool as compliance support too. Its announcement cites the General Data Protection Regulation (GDPR, the European Union’s privacy law), the Gramm-Leach-Bliley Act (GLBA, the U.S. rule on financial data privacy), the Payment Card Industry Data Security Standard (PCI DSS) and the California Consumer Privacy Act (CCPA).

Can Watermarking Stop Someone From Screenshotting a Screen?

Not entirely. FSS blocks software tools like Print Screen and screen recorders, and it stamps any captured image with a name, timestamp and IP address. No watermark stops a phone camera from physically photographing a monitor in the first place. It only makes that photo easier to trace back to whoever took it.

Security engineers who deploy screen capture blocking on virtual desktops flag the same limit again and again. Watermarking deters and documents, but it does not physically prevent the photo from being taken. Whoever pulls a phone out still leaves a trail.

That is the actual trade on offer here, and it is a real one for a bank weighing the cost of a $20 million-plus incident against a tool that cannot promise zero leaks, only faster, better documented ones.

AI Copilots Are About to Put More on the Screen

Verizon’s 2026 Data Breach Investigations Report found that 67% of workers who use AI tools on corporate devices do so through personal, non-corporate accounts, outside any policy an employer controls.

That gap matters for screens specifically. When an employee routes a customer’s data through a personal AI account, whatever comes back appears on the same monitor Fasoo is trying to watermark, outside any corporate policy that governs it.

Microsoft has already moved on a related gap. A staged rollout of Purview data loss prevention policies finished expanding in late April, blocking Copilot from processing sensitivity labeled files stored locally or outside Microsoft’s own cloud.

Fasoo’s own roadmap already points past the monitor, too. In April, the company introduced a parallel framework to govern what large language models generate, applying the same watermark and log logic to AI output instead of human eyes. The screen, for now, was just the first unmanaged surface it picked to fix.

Frequently Asked Questions

A few practical questions keep coming up around screen level security and where it fits next to everything else a bank already runs.

What Counts as Screen-Based Data Exposure?

It covers any moment sensitive data becomes visible on a monitor without passing through a file transfer, an email or a network connection, which is why firewalls, encryption and data loss prevention tools never see it happen. Fasoo’s own case studies point to core banking, CRM and ERP systems, where a customer service agent can legally view an account, then screenshot or photograph it without triggering a single network alert.

How Much Are Regulators Fining Companies Over Data Exposure?

European regulators assessed nearly €1.2 billion (about $1.3 billion) in GDPR fines in 2025 alone, according to SentinelOne’s tracking of data breach penalties, and that is before separate GLBA, PCI DSS or CCPA enforcement in the United States.

Which Other Companies Sell Screen Watermarking Tools?

Fasoo is not alone in the space. Microsoft has tested watermarking and a Protected Clipboard feature inside its Edge browser tied to Purview policies, while smaller vendors including Curtain MonGuard and Saudi provider NourNet sell dedicated screen watermarking products built around the same insider photo problem.

How Long Do Insiders Typically Have Access Before They Leak Data?

Research Fasoo cites in its own materials found that roughly 70% of intellectual property theft happens in the final 90 days before an employee leaves a company, the window when access still exists but loyalty often does not.

Logan Pierce is a writer and web publisher with over seven years of experience covering consumer technology. He has published work on independent tech blogs and freelance bylines covering Android devices, privacy focused software, and budget gadgets. Logan founded Oton Technology to publish clear, no nonsense tech news and reviews based on real hands on testing. He has personally tested and reviewed dozens of mid range and budget Android phones, written extensively about app privacy, and built and managed multiple WordPress publications over the past decade. Logan holds a bachelor's degree in English and studied digital marketing at a certificate level.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Trending