Accountability, Blog, Retail and Technology

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Volvo’s retailer in Brazil, Dimas Volvo, leaked sensitive files through its website. website, belonging to an independent Volvo retailer in the Santa Catarina region of Brazil.

Retail

Retail Manufacturing Passwords Accountability

5 Things Retailers Should Know About Cybersecurity

Duo's Security Blog

FEBRUARY 16, 2022

With growing concerns around security, ransomware and retail breaches, there are a few key considerations that retailers should keep in mind when it comes to protecting their organizations. Retail’s great “digital transformation” sped up, as did the number of data breaches impacting retail. Data breach costs rose from $3.86

Retail

Retail Cybersecurity Data breaches Passwords

Why ATO Attacks Are Attacks on Your Customers

Security Boulevard

FEBRUARY 22, 2022

Motivated by the continual surge in eCommerce, which according to UNCTAD has seen unprecedented growth during the COVID-19 pandemic, retailers are scrambling to adapt to a shift in consumer demand and create unique customer experiences that set them apart from the competition.

eCommerce

eCommerce Retail Technology Accountability

Prilex modification now targeting contactless credit card transactions

SecureList

JANUARY 31, 2023

This is highly advanced malware adopting a unique cryptographic scheme, doing real-time patching in target software, forcing protocol downgrades, manipulating cryptograms, doing GHOST transactions and performing credit card fraud—even on cards protected with the so-called unhackable CHIP and PIN technology.

Retail

Retail Malware Mobile Technology

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data. Cybercriminals are forever leveraging advanced tools and tactics to attack consumers globally.

Phishing

Phishing Banking Retail Financial Services

Freedom Mobile data breach impacts at least 15,000 customers

Security Affairs

MAY 9, 2019

Exposed records include email addresses, phone numbers, home addresses, dates of birth, IP addresses associated with payment methods, credit scores (from Equifax and other companies), unencrypted payment card data with CVV codes, locations, and other customer service records, and account details. All the data was encrypted. million users.”

Mobile

Mobile Data breaches Retail Accountability

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

Malwarebytes

OCTOBER 27, 2023

In a security blog about Octo Tempest Microsoft states: “Octo Tempest monetized their intrusions in 2022 by selling SIM swaps to other criminals and performing account takeovers of high-net-worth individuals to steal their cryptocurrency.”

Social Engineering

Social Engineering Engineering Ransomware Backups

‘Tis The Season for Holiday Cyber Threats Targeting Enterprises in a Pandemic World

McAfee

NOVEMBER 8, 2021

Supply chain and logistics, e-commerce and retail, and the travel industry traditionally experience holiday seasonal increases in consumer and business activity, making them more vulnerable to cyber threats and leaving business, employee, and consumer data at risk. E-Commerce and Retail. of the total detected cyber threats.

Cyber threats

Cyber threats Retail Risk Architecture

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. ” continues the report.

Energy and Utilities

Energy and Utilities Government Firewall Malware

Securing the future of payments – what does 2018 have in store?

Thales Cloud Protection & Licensing

DECEMBER 20, 2017

We’re now seeing big data play an increasing role in how retail sales and payments are being tailored to individual consumer’s preferences, and providers are adopting and integrating smarter, more efficient ways of completing the path-to-purchase. Three-Domain Secure (3DS) 2.0

Retail

Retail Marketing Mobile Digital transformation

Zix tricks: Phishing campaign creates false illusion that emails are safe

SC Magazine

MAY 11, 2021

An Office 365 retail pack. The attack reached 5,000 to 10,000 mailboxes, targeting Office365 users with the goal of stealing their credentials, according to a new blog post today from Abnormal Security. Raysonho @ Open Grid Scheduler / Grid Engine, CC0, via Wikimedia Commons).

Phishing

Phishing Authentication Social Engineering Media

The Clock is Ticking for PCI DSS 4.0 Compliance

Thales Cloud Protection & Licensing

SEPTEMBER 18, 2023

Virtually every major financial institution, retailer, and scores of payment processors have been the victims of data breaches, incurring both financial and reputational damage. In this blog I will focus on two requirements and show how Thales CipherTrust Data Security Platform solutions can help businesses streamline compliance.

Financial Services

Financial Services Data breaches Accountability Encryption

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

At this year’s Conference 46 percent of all keynote speakers were women,” according to Sandra Toms, VP and curator, RSA Conference, in a blog she posted on the last day of this year’s event. During her first few years at Booz Allen, she supported technology, innovation and risk analysis initiatives across U.S. government clients.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

IoT and Machine Identity Management in Financial Services

Security Boulevard

JUNE 28, 2022

It enables insurance companies to collect and share data with customers about their insured goods in real time, allows consumers to make instant contactless payments and provides the framework for retail banks to collect information on each customer that enters one of their locations. Better investment decisions. UTM Medium. UTM Source.

Financial Services

Financial Services IoT Banking Retail

cert-manager Graduates to CNCF Incubating Project

Security Boulevard

OCTOBER 19, 2022

million downloads per day across industries including financial services, technology, retail, healthcare and manufacturing. airlines; the top four credit card issuers; three out of the four top accounting and consulting firms; four of the five top U.S. . -- Tim Ramlot, Software Engineer at Jetstack and cert-manager maintainer.

Retail

Retail Software Marketing Engineering

PSD2 Regulation and Compliance

Thales Cloud Protection & Licensing

SEPTEMBER 4, 2024

These technical standards precisely defined how banks must connect their technology platforms with third-party providers to support open banking. While the majority of European financial institutions have now implemented the required technologies and frameworks, compliance is not a one-time effort.

Banking

Banking Authentication Consumer Protection Marketing

The Cost of Doing Nothing

ForAllSecure

FEBRUARY 2, 2021

In security, some may refute that there is “no savings to worry about" if no investment has been made to begin with, arguing that they’ve been “just fine so far” In this blog, we will argue there is a cost in doing nothing. billion in incident response and an overhaul of their technology and data security program.

Retail

Retail Data breaches Hacking Healthcare

The Cost of Doing Nothing

ForAllSecure

FEBRUARY 2, 2021

In security, some may refute that there is “no savings to worry about" if no investment has been made to begin with, arguing that they’ve been “just fine so far” In this blog, we will argue there is a cost in doing nothing. billion in incident response and an overhaul of their technology and data security program.

Retail

Retail Data breaches Hacking Healthcare

2018 Thales Data Threat Report, Global Edition: Digital Transformation & Data Security

Thales Cloud Protection & Licensing

JANUARY 25, 2018

Digital transformation inherently drives organizations into a data driven world – and each technology used for digital transformation (cloud, big data, IoT, blockchain, mobile payments and more) requires its own unique approach to protecting data. Adoption levels are high across the board for these technologies. Big Data – 99%.

Digital transformation

Digital transformation Threat Reports Big data Data breaches

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. UK fashion retailer FatFace angered customers in its handling of a customer data theft hack. How not to disclosure a Hack. conduct employee phishing tests.

Energy and Utilities

Energy and Utilities Ransomware Hacking Banking

QR Codes: The future with no security shake up

Thales Cloud Protection & Licensing

DECEMBER 26, 2018

To reach its tipping point, cashless payment technology has come on a long way since the first magnetic stripe card almost 50 years ago. New technologies, particularly in advances in payments, will inevitably bring with them new security concerns. Providing this is as important now as it has been for any other payment technology.

Mobile

Mobile Technology Retail Authentication

Area 1 Security Continues Strong Momentum in 2021, with Growth Rate Reaching 268% Compared to the Previous Year and Overall Business Growing by 160%

CyberSecurity Insiders

JANUARY 27, 2022

Reflecting on its partnership with Area 1, Pillar Technology Partners’ CEO, Cornelius V. To learn more about Area 1 Security, visit the blog , subscribe to the Phish of the Week newsletter , or follow the company on LinkedIn. Area 1 is a Certified Microsoft Partner, and Google Cloud Technology Partner of the Year for Security.

Phishing

Phishing Retail Marketing Financial Services

CENTRAL BANK DIGITAL CURRENCIES

Thales Cloud Protection & Licensing

FEBRUARY 27, 2023

This includes the evolution from physical currency and checks to digital payment methods such as credit and debit cards, as well as the emergence of newer technologies like mobile payments and cryptocurrencies. Open banking is a good indicator of the speed and extent to which consumers and businesses are adopting new payment technologies.

Banking

Banking Cryptocurrency Financial Services Accountability

IAM 101 Series: What Is RBAC?

Security Boulevard

AUGUST 26, 2021

The primary reason is cybercriminals’ use of new and emerging technologies, such as artificial intelligence (AI) and machine learning (ML). . In the 2021 ForgeRock Consumer Identity Breach Report , ”for the third consecutive year unauthorized access was the most common type of breach, accounting for 43% of breaches.”. What Is RBAC?

Data breaches

Data breaches Artificial Intelligence Retail Architecture

HUMAN Raises $100 Million In Growth Funding Round Led By WestCap and NightDragon

CyberSecurity Insiders

JANUARY 4, 2022

Cybercriminals with millions of sophisticated bots at their disposal can send billions of fake requests to create fake accounts, take over accounts and commit credit card fraud, manipulate popularity and consensus, contaminate user data, defraud digital advertising and marketing campaigns, and snipe or hoard online goods and services.

Marketing

Marketing Internet Internet Advertising

The Biggest Blocker to Open Banking Success? Slow, Risky Data

Security Boulevard

JUNE 16, 2021

While the passing of PSD2 SCA is a watershed moment and a loud wake-up call for retail banking and financial services industries, readiness continues to confound financial institutions across the region. Traditional test data management tools are simply not up to the task of wrangling data from across a multi-generational technology stack.

Banking

Banking Marketing Financial Services Retail

GUEST ESSAY: Did you know these 5 types of digital services are getting rich off your private data?

The Last Watchdog

NOVEMBER 5, 2018

Consumers have begun to better understand how their data is being used, but many fail to realize the hidden privacy pitfalls in every day technology. Another little known fact about Facebook is that they can create “ghost profiles” using facial recognition for people who do not have an account, but appear in someone else’s photos.

Media

Media Software Big data Retail

Aqua Security CNAPP is First to Combine Frictionless Cloud Workload Visibility With Active Protection Across the Application Lifecycle

CyberSecurity Insiders

FEBRUARY 3, 2022

Most customers and practitioners start a cloud native security journey by implementing shift-left security testing and preventive controls while also gaining visibility into risks and artifact inventories across registries and cloud accounts. For more information, please visit the Aqua Blog. About Aqua Security.

Risk

Risk Digital transformation Financial Services Retail

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

Thales Cloud Protection & Licensing

JULY 12, 2018

The use of IoT technologies holds enormous potential in practically every segment of human enterprise – government, banking and finance, healthcare, retail, agriculture, and ecommerce to name a few. PKI solutions provide the technology needed to secure growing IoT deployments. The post Knock, Knock; Who’s There? –

IoT

IoT Data collection Encryption eCommerce

Data Loss Prevention: Best Practices for Secure Data Management

Centraleyes

APRIL 16, 2024

Organizations can create a structured foundation for data loss prevention techniques by delineating responsibilities and ensuring accountability. Integration with Business Processes Effective DLP goes beyond technology; it integrates seamlessly with existing business processes.

Encryption

Encryption Education Risk Healthcare

Top 6 Compliance Reporting Tools in 2024

Centraleyes

JUNE 25, 2024

Accountability Compliance tracking and reporting fosters a culture of accountability and transparency within organizations. It holds employees accountable for their actions, encourages ethical behavior, and ensures adherence to established policies and procedures.

Risk

Risk Data collection Software Accountability

Aqua Security CNAPP is first to combine frictionless cloud workload visibility with active protection across the application lifecycle

CyberSecurity Insiders

FEBRUARY 4, 2022

Most customers and practitioners start a cloud native security journey by implementing shift-left security testing and preventive controls while also gaining visibility into risks and artifact inventories across registries and cloud accounts. For more information, please visit the Aqua blog. . . About Aqua Security.

Risk

Risk Digital transformation Financial Services Retail

Remote Work is Here to Stay, and Other Cybersecurity Predictions for 2021

Webroot

DECEMBER 14, 2020

As such, automation and the adoption of AI technologies will be critical to plugging the gap. Businesses will need to account for that. I predict that in 2021 vulnerable industries like hospitality, travel and retail will start to use even more remote access platforms like Square and others.

Cybersecurity

Cybersecurity Engineering Phishing Social Engineering

The Ultimate Guide to Troubleshooting Vulnerability Scan Failures

Centraleyes

JUNE 17, 2024

NIST CSF (National Institute of Standards and Technology) Framework Industry: General (Applicable across various sectors) Requirement: NIST’s cybersecurity framework advocates for continuous vulnerability assessments and timely patching to enhance security resilience.

Penetration Testing

Penetration Testing Firewall Risk Software

Passwords vs. Passkeys: The State of Passkeys on User Endpoints

Duo's Security Blog

SEPTEMBER 4, 2023

In our recent passkey blog series , we’ve been unpacking the difference between new passkey technology and more conventional password security in light of some of the most critical authentication scenarios. Once a user’s credentials are known, they may be used by attackers on any system with user accounts, from anywhere.

Passwords

Passwords Authentication Accountability Password Management

3D Printing with Kids on Lenovo Yoga 7i

Troy Hunt

AUGUST 5, 2021

The greatest gift I can give my kids is a love of technology. And without doubt, the best educational technology thing I've ever brought home is my Prusa 3D printer. I ended up buying the MK3S+ and a few different spools of filament, purchased from the official website and shipped from Europe.

Education

Education Technology Software Retail

Who is Alleged Medibank Hacker Aleksandr Ermakov?

Krebs on Security

JANUARY 26, 2024

” In 2020, GustaveDore advertised on several Russian discussion forums that he was part of a Russian technology firm called Shtazi , which could be hired for computer programming, web development, and “reputation management.” The Instagram account of Mikhail Borisovich Shefel, aka MikeMike aka Rescator.

Cybercrime

Cybercrime Ransomware Retail Insurance

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. This strategy is mostly carried out by implementing rate limiting on scarce resources such as IP and accounts. forums where accounts and IP addresses are routinely sold, as visible in the screenshot above.

Accountability

Accountability Artificial Intelligence Engineering Retail

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. This strategy is mostly carried out by implementing rate limiting on scarce resources such as IP and accounts. forums where accounts and IP addresses are routinely sold, as visible in the screenshot above.

Accountability

Accountability Artificial Intelligence Engineering Retail

Unmasking Crypto Scams: The Team Effort Behind the Con

Digital Shadows

FEBRUARY 2, 2023

In this blog, we’ll take a look at the components of a crypto scam, including investors, designers, developers, and marketers, as well as a few interesting trends that characterize this black market. Numerous articles on cyber-criminal forums tell users how to construct fake blockchains and market them to (mostly retail) investors.

Scams

Scams Cryptocurrency Marketing Advertising

NY AG Investigation Highlights Dangers of Credential Stuffing

eSecurity Planet

JANUARY 10, 2022

million online accounts at 17 companies, including online retailers, restaurant chains and food delivery services, according to the report. Users – forced to contend with an ever-expanding number of online accounts they must manage – tend to reuse the same passwords across multiple online services.

Passwords

Passwords Password Management Authentication Accountability

Why Sucessful Central Bank Digital Currencies require Partnership enagement

Thales Cloud Protection & Licensing

JUNE 21, 2023

Why Sucessful Central Bank Digital Currencies require Partnership enagement madhav Thu, 06/22/2023 - 06:23 In Part 1 of this blog series we explored what CBDC, or Central Bank Digital Currencies are, and why they are important. Development’ and ‘breakthrough’ are handled by technology stakeholders.

Banking

Banking Retail Encryption Technology

Key Aspects of Data Access Governance in Compliance and Auditing

Centraleyes

MAY 23, 2024

It refers to the methods and technology businesses employ to manage and monitor access to their data. Logging and Audit Trail: Establishing systems to track and register user behaviors and creating an audit trail for accountability are essential steps in establishing accountability.

Government

Government Backups Data privacy Accountability

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

But data management begins with strategy, not technology. It underlies organizational accountability and is necessary to identify threats and uncover deficiencies. And it’s being used by organizations from budget-strapped school systems to successful retailers, healthcare providers, investment firms, utility companies and more.

Encryption

Encryption Data privacy Cloud Migration Risk

Volvo retailer leaks sensitive files

5 Things Retailers Should Know About Cybersecurity

Trending Sources

Why ATO Attacks Are Attacks on Your Customers

Prilex modification now targeting contactless credit card transactions

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Freedom Mobile data breach impacts at least 15,000 customers

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

‘Tis The Season for Holiday Cyber Threats Targeting Enterprises in a Pandemic World

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Securing the future of payments – what does 2018 have in store?

Zix tricks: Phishing campaign creates false illusion that emails are safe

The Clock is Ticking for PCI DSS 4.0 Compliance

SPOTLIGHT: Women in Cybersecurity

IoT and Machine Identity Management in Financial Services

cert-manager Graduates to CNCF Incubating Project

PSD2 Regulation and Compliance

The Cost of Doing Nothing

The Cost of Doing Nothing

2018 Thales Data Threat Report, Global Edition: Digital Transformation & Data Security

Cyber Security Roundup for April 2021

QR Codes: The future with no security shake up

Area 1 Security Continues Strong Momentum in 2021, with Growth Rate Reaching 268% Compared to the Previous Year and Overall Business Growing by 160%

CENTRAL BANK DIGITAL CURRENCIES

IAM 101 Series: What Is RBAC?

HUMAN Raises $100 Million In Growth Funding Round Led By WestCap and NightDragon

The Biggest Blocker to Open Banking Success? Slow, Risky Data

GUEST ESSAY: Did you know these 5 types of digital services are getting rich off your private data?

Aqua Security CNAPP is First to Combine Frictionless Cloud Workload Visibility With Active Protection Across the Application Lifecycle

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

Data Loss Prevention: Best Practices for Secure Data Management

Top 6 Compliance Reporting Tools in 2024

Aqua Security CNAPP is first to combine frictionless cloud workload visibility with active protection across the application lifecycle

Remote Work is Here to Stay, and Other Cybersecurity Predictions for 2021

The Ultimate Guide to Troubleshooting Vulnerability Scan Failures

Passwords vs. Passkeys: The State of Passkeys on User Endpoints

3D Printing with Kids on Lenovo Yoga 7i

Who is Alleged Medibank Hacker Aleksandr Ermakov?

Attacks against machine learning — an overview

Attacks against machine learning — an overview

Unmasking Crypto Scams: The Team Effort Behind the Con

NY AG Investigation Highlights Dangers of Credential Stuffing

Why Sucessful Central Bank Digital Currencies require Partnership enagement

Key Aspects of Data Access Governance in Compliance and Auditing

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Stay Connected