Security Affairs

MARCH 2, 2023

Retailer WH Smith disclosed a data breach following a cyber attack, threat actors had access to access company data. Retailer WH Smith revealed that threat actors have breached its infrastructure and had access to the data of about 12,500 current and former employees.

Retail 91

Retail Data breaches Cyber Attacks Hacking 91

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. SecurityAffairs – hacking, Zerologon). Pierluigi Paganini.

Cybercrime 117

Cybercrime Security Intelligence Authentication Banking 117

Security Affairs

FEBRUARY 4, 2022

Retail giant Target is going to open-source an internal tool, dubbed Merry Maker , designed to detect e-skimming attacks. Retail giant Target announced the release in open-source of an internal tool, dubbed Merry Maker , designed to detect e-skimming attacks. SecurityAffairs – hacking, Merry Maker). Pierluigi Paganini.

Retail 89

Retail Cybersecurity Hacking Software 89

Security Affairs

APRIL 25, 2024

Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. It operates stores across Sweden and is responsible for the retail sale of wine, spirits, and strong beer. “It Systembolaget has a monopoly on the sale of alcoholic beverages containing more than 3.5%

Ransomware 105

Ransomware Retail Cyber Attacks Backups 105

Security Affairs

APRIL 21, 2024

PoC publicly available Linux variant of Cerber ransomware targets Atlassian servers Ivanti fixed two critical flaws in its Avalanche MDM Researchers released exploit code for actively exploited Palo Alto PAN-OS bug Cisco warns of large-scale brute-force attacks against VPN and SSH services PuTTY SSH Client flaw allows of private keys recovery A renewed (..)

Data breaches 97

Data breaches Phishing Ransomware Malware 97

Hot for Security

APRIL 19, 2021

Notorious FIN7 gang stole payment card details from retailers around the world Cybercrime gang posed as penetration testing firm to recruit hackers. A key member of the FIN7 cybercrime gang – which is said to have caused over one billion dollars worth of damage around the world – has been sentenced to 10 years in jail.

Penetration Testing 144

Penetration Testing Retail Social Engineering Cybersecurity 144

Security Affairs

JUNE 7, 2023

Clop ransomware group claims to have hacked hundreds of companies globally by exploiting MOVEit Transfer vulnerability. MOVEit Transfer is a managed file transfer that is used by enterprises to securely transfer files using SFTP, SCP, and HTTP-based uploads.

Hacking 76

Hacking Ransomware Retail Cyber Attacks 76

Security Affairs

JUNE 13, 2023

Recently another data breach made the headlines, the hack of the payroll services provider Zellis. One of Zellis’s customers, the British health and beauty retailer and pharmacy chain Boots also confirmed to have been impacted by the attack. At this time the number of installs located in the UK is 127.

Hacking 68

Hacking Data breaches Ransomware Retail 68

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 105

Social Engineering Spyware Data breaches Surveillance 105

Security Affairs

SEPTEMBER 1, 2020

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers.

Hacking 90

Hacking VPN Advertising Financial Services 90

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. Image: Lumen’s Black Lotus Labs. Usually, these users have no idea their systems are compromised.

Malware 203

Malware VPN Internet Internet 203

Security Affairs

MARCH 24, 2024

During the month of Ramadan, Resecurity observed a significant increase in fraudulent activities and scams, coinciding with a surge in retail and online transactions. Middle Eastern enterprises, facing this heightened risk, are urged to bolster consumer protection and reinforce their brand security.

Scams 106

Scams Consumer Protection Retail Government 106

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4

Artificial Intelligence 91

Artificial Intelligence Data breaches Scams Insurance 91

Security Affairs

JANUARY 19, 2024

This group primarily focused its attacks on the construction, manufacturing/industrial, and retail industries. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware)

Ransomware 120

Ransomware Manufacturing Retail Insurance 120

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. SecurityAffairs – hacking, FIN7). The post FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads appeared first on Security Affairs. ” concludes the experts.

Cybercrime 116

Cybercrime Retail Phishing Hacking 116

Security Affairs

OCTOBER 20, 2021

T ech giant Acer was hacked again in a few days, after the compromise of the servers in India, threat actors also breached some of its systems in Taiwan. The incident was disclosed after threat actors have advertised the sale of more than 60 GB of data on an underground cybercrime forum. SecurityAffairs – hacking, data breach).

Data breaches 96

Data breaches Retail Cybercrime Hacking 96

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505. Pierluigi Paganini.

Cybercrime 92

Cybercrime Banking Malware Retail 92

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini.

Cybercrime 43

Cybercrime Advertising Retail Banking 43

Security Affairs

NOVEMBER 12, 2019

The analysis of a malicious email revealed a possible raising interest of the TA505 cybercrime gang in system integrator companies. The infrastructure used in the attacks suggests the involvement of the cybercrime group TA505. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors.

Cybercrime 42

Cybercrime Computers and Electronics Penetration Testing Malware 42

Security Affairs

APRIL 16, 2023

hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches 73

Data breaches Spyware Retail Surveillance 73

Security Affairs

OCTOBER 14, 2021

The incident was disclosed after threat actors have advertised the sale of more than 60 GB of data on an underground cybercrime forum. The threat actors shared a link to stolen files and databases, stolen information includes customer data, financial information, login details for Acer retailers and distributors from India.

Computers and Electronics 76

Computers and Electronics Retail Media Cybercrime 76

Security Affairs

OCTOBER 23, 2022

Multiple supply chains potentially impacted Bulgaria hit by a cyber attack originating from Russia Interpol arrested 75 members of the cybercrime ring Black Axe 45,654 VMware ESXi servers reached End of Life on Oct. SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Data breaches 65

Data breaches Retail Ransomware Cybercrime 65

Security Affairs

APRIL 12, 2024

The TA547 group sent emails to the victims impersonating the German retail company Metro, purportedly related to invoices. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – Hacking, malware) The messages contain a password-protected ZIP file containing an LNK file when opened.

Malware 102

Malware Social Engineering Retail Engineering 102

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. Russian TA505 hacking group , aka Evil Corp , has been active since 2014 focusing on Retail and banking sectors. Upon executing the MSI file, a PowerShell command is launched.

Malware 87

Malware Cybercrime Banking Software 87

Security Affairs

JUNE 11, 2021

The US Department of Justice seized the servers and domains of the popular cybercrime marketplace SlilPP. In the past, law enforcement shut down other cybercrime marketplace focused on the sale of login credentials, such as xDedic and DEER.IO. SecurityAffairs – hacking, SlilPP marketplace). Pierluigi Paganini.

Cybercrime 112

Cybercrime Accountability Retail Cyber threats 112

Security Affairs

MARCH 30, 2023

The most recent version of AlienFox, Version 4, shows a totally different structure, it has added WordPress, Joomla, Drupal, Prestashop, Magento, and Opencart targeting, an Amazon.com retail site account checker. “The AlienFox toolset demonstrates another stage in the evolution of cybercrime in the cloud.” Tool1, Tool2).

Retail 91

Retail Cybercrime Cryptocurrency Malware 91

Security Affairs

MAY 20, 2023

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. The investigation into the security breach is still ongoing. “We Luxottica Group S.p.A.

Data breaches 89

Data breaches Retail Hacking Ransomware 89

Security Affairs

JANUARY 19, 2024

The incident interrupted retail store inventory replenishment and delayed order fulfillment. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, VF Corp) VF Corp also added that it has found no evidence that customer passwords were stolen.

Data breaches 113

Data breaches Retail Insurance Passwords 113

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model. Pierluigi Paganini.

Ransomware 98

Ransomware Retail Malware Cyber threats 98

Security Affairs

NOVEMBER 4, 2020

“A forensic investigation of the incident has concluded, and no exfiltration of any sensitive business data or retail customer, supplier, consumer, or employee data was identified. SecurityAffairs – hacking, malware). The post Toymaker giant Mattel disclosed a ransomware attack appeared first on Security Affairs.

Ransomware 110

Ransomware Retail Advertising Malware 110

Security Affairs

NOVEMBER 19, 2022

Other campaigns observed by the experts invited recipients to claim gift cards from popular retailers like Home Depot. In this case, the spam messages include links to fake online survey pages that have nothing to do with the retailer’s gift card. The experts also published a guide for a secure holiday shopping.

Scams 141

Scams Retail Password Management Phishing 141

Security Affairs

NOVEMBER 25, 2022

“The users were able to impersonate an infinite number of entities (such as banks, retail companies and government institutions) for financial gain and substantial losses to victims.” ” “As cybercrime knows no borders, effective judicial cooperation across jurisdictions is key in bringing its perpetrators to court.

Retail 92

Retail Cybercrime Banking Passwords 92

Security Affairs

JUNE 10, 2021

Group-IB, a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global scale. . SecurityAffairs – hacking, Online Crime). On average, users visited 40,000 fraudulent websites every day.

Scams 94

Scams Banking Retail Insurance 94

Security Affairs

MARCH 4, 2023

stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0 FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Spyware 83

Spyware Data breaches Retail Ransomware 83

Security Affairs

AUGUST 20, 2021

. “ The teams remain mobilized, executing the protection and recovery plan, with all their control and security protocols, and working to re-establish all company operations.” The retailer also reported that its main databases were not impacted. . SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Ransomware 107

Ransomware Retail Cryptocurrency Data breaches 107

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. How not to disclosure a Hack. UK fashion retailer FatFace angered customers in its handling of a customer data theft hack.

Energy and Utilities 122

Energy and Utilities Ransomware Banking Hacking 122

Security Affairs

JANUARY 24, 2024

Impacted customers include Sweden’s largest cinema chain Filmstaden (the attack disrupted its online ticket system) and the discount retail chain Rusta. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking , Akira ransomware attack)

Ransomware 108

Ransomware VPN Government Retail 108