Security Affairs

MAY 12, 2024

Most of the victims are in the manufacturing, engineering and construction, and retail sectors. Some of the victims’ ransom payments were sent by both Conti and Black Basta groups to the gang behind the Qakbot malware. 61,9% of the victims are in the US, 15.8% in Germany, and 5.9%

Ransomware 111

Ransomware Hacking Healthcare Retail 111

Security Affairs

DECEMBER 5, 2022

Resecurity has identified a new underground marketplace in the Dark Web oriented towards mobile malware developers and operators. “In the Box” dark web marketplace is leveraged by cybercriminals to attack over 300 financial institutions (FIs), payment systems, social media and online-retailers in 43 countries.

Mobile 101

Mobile Malware Banking Retail 101

Hot for Security

APRIL 19, 2021

Notorious FIN7 gang stole payment card details from retailers around the world Cybercrime gang posed as penetration testing firm to recruit hackers. A key member of the FIN7 cybercrime gang – which is said to have caused over one billion dollars worth of damage around the world – has been sentenced to 10 years in jail.

Penetration Testing 144

Penetration Testing Retail Social Engineering Cybersecurity 144

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 104

Social Engineering Spyware Data breaches Surveillance 104

Security Affairs

APRIL 21, 2024

Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches 95

Data breaches Phishing Ransomware Malware 95

Security Affairs

APRIL 25, 2024

Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. It operates stores across Sweden and is responsible for the retail sale of wine, spirits, and strong beer. “It Systembolaget has a monopoly on the sale of alcoholic beverages containing more than 3.5%

Ransomware 103

Ransomware Retail Cyber Attacks Backups 103

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505.

Cybercrime 92

Cybercrime Banking Malware Retail 92

Security Affairs

OCTOBER 3, 2021

TA544 is a financially motivated threat actor that is active at least since 2017, it focuses on attacks on banking users, it leverages banking malware and other payloads to target organizations worldwide, mainly in Italy and Japan. ” reads the analysis published by Proofpoint. Banca Sella UniCredit Group. ” concludes the report.

Malware 83

Malware Banking Social Engineering Retail 83

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware 97

Ransomware Retail Malware Cyber threats 97

Security Affairs

JANUARY 30, 2024

Once the malware has escalated the privileges on a machine, the threat actors use a batch script to uninstall popular antivirus solutions installed on the machine. In early January, the Cactus ransomware group claimed to have hacked Coop, one of the largest retail and grocery providers in Sweden.

Ransomware 124

Ransomware Hacking Data breaches Digital transformation 124

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4

Artificial Intelligence 90

Artificial Intelligence Data breaches Scams Insurance 90

Security Affairs

NOVEMBER 12, 2019

The analysis of a malicious email revealed a possible raising interest of the TA505 cybercrime gang in system integrator companies. The two Macros decoded a Javascript payload acting as a drop and execute by using a well-known strategy as described in: “ Frequent VBA Macros used in Office Malware ”. Introduction. 66.133.129.5)

Cybercrime 41

Cybercrime Computers and Electronics Penetration Testing Malware 41

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini.

Cybercrime 43

Cybercrime Advertising Retail Banking 43

Security Affairs

NOVEMBER 4, 2020

“A forensic investigation of the incident has concluded, and no exfiltration of any sensitive business data or retail customer, supplier, consumer, or employee data was identified. SecurityAffairs – hacking, malware). The post Toymaker giant Mattel disclosed a ransomware attack appeared first on Security Affairs.

Ransomware 108

Ransomware Retail Advertising Malware 108

Security Affairs

FEBRUARY 2, 2020

Security experts from Microsoft have uncovered an ongoing p hishing campaign launched by the TA505 cybercrime gang (aka Evil Corp ) that is employing attachments featuring HTML redirectors for delivering malicious Excel docs. In contrast, past Dudear email campaigns carried the malware as attachment or used malicious URLs.

Malware 76

Malware Security Intelligence Banking Phishing 76

Security Affairs

OCTOBER 18, 2020

Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK. The macros download and execute the FRIENDSPEAK code, which in turn downloads the MIXLABEL malware. ” reads the analysis published by FireEye. ” reads the analysis.

Ransomware 129

Ransomware Malware Telecommunications Advertising 129

Security Affairs

OCTOBER 8, 2023

Human Security identified a supply chain of a Chinese manufacturer that was compromised to backdoor the firmware of several products delivered to resellers, physical retail stores and e-commerce warehouses. “Unfortunately, BADBOX-infected devices are unsalvageable by an average user. ” concludes the report.

Firmware 143

Firmware Mobile Malware Retail 143

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat Research experts have monitored recent spear-phishing attacks conducted by financially motivated threat actor FIN7. ” reads the analysis published by Anomali.

Cybercrime 114

Cybercrime Retail Phishing Hacking 114

Security Affairs

DECEMBER 1, 2023

.” Most of the victims are in the manufacturing, engineering and construction, and retail sectors. Some of the victims’ ransom payments were sent by both Conti and Black Basta groups to gang behind the Qakbot malware. The malware spreads via malspam campaigns, it inserts replies in active email threads.

Ransomware 84

Ransomware Retail Malware Insurance 84

Security Affairs

JANUARY 22, 2023

PoC Exploit for CVE-2022-47966 will be released soon Fortinet observed three rogue PyPI packages spreading malware Managing Asset Risks During Healthcare M&As Avast researchers released a free BianLian ransomware decryptor for some variants of the malware Experts spotted a backdoor that borrows code from CIA’s Hive malware T95 Android TV Box sold (..)

Data breaches 90

Data breaches Retail Malware VPN 90

Security Affairs

MARCH 30, 2023

AlienFox collects lists of misconfigured cloud endpoints through security scanning platforms like LeakIX and SecurityTrails. The most recent version of AlienFox, Version 4, shows a totally different structure, it has added WordPress, Joomla, Drupal, Prestashop, Magento, and Opencart targeting, an Amazon.com retail site account checker.

Retail 91

Retail Cybercrime Cryptocurrency Malware 91

Security Affairs

MARCH 24, 2024

During the month of Ramadan, Resecurity observed a significant increase in fraudulent activities and scams, coinciding with a surge in retail and online transactions. Middle Eastern enterprises, facing this heightened risk, are urged to bolster consumer protection and reinforce their brand security.

Scams 104

Scams Consumer Protection Retail Government 104

Security Affairs

APRIL 16, 2023

hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived!

Data breaches 73

Data breaches Spyware Retail Surveillance 73

Security Affairs

JANUARY 19, 2024

This group primarily focused its attacks on the construction, manufacturing/industrial, and retail industries.

Ransomware 118

Ransomware Manufacturing Retail Insurance 118

Security Affairs

JANUARY 24, 2024

Impacted customers include Sweden’s largest cinema chain Filmstaden (the attack disrupted its online ticket system) and the discount retail chain Rusta. According to the NCSC-FI, six out of seven infections were caused by Akira family malware. Tietoevry notified law enforcement and impacted customers.

Ransomware 105

Ransomware VPN Government Retail 105

Security Affairs

MAY 16, 2019

A joint effort by international law enforcement agencies from 6 different countries has dismantled the crime gang behind the GozNym banking malware. “An unprecedented, international law enforcement operation has dismantled a complex, globally operating and organised cybercrime network.”

Banking 68

Banking Cybercrime Malware Advertising 68

Security Affairs

MARCH 4, 2023

Every week the best security articles from Security Affairs are free for you in your email box. FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M If you want to also receive for free the newsletter with the international press subscribe here. flaws could impact billions of devices The U.S.

Spyware 83

Spyware Data breaches Retail Ransomware 83

Security Affairs

DECEMBER 22, 2019

Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. Brady announced today.”

Computers and Electronics 58

Computers and Electronics Banking Cybercrime Malware 58

Security Affairs

NOVEMBER 17, 2022

The sophisticated phishing campaign exploits the reputation of international brands and targets businesses in multiple industries, including retail, banking, travel, and energy. In some cases, the Fangxiao landing pages were displaying malicious ads that if clicked from an Android device deliver the Triada malware. Pierluigi Paganini.

Phishing 105

Phishing Adware Retail Malware 105

Security Affairs

AUGUST 25, 2021

The group has been active since 2016, it leverages known malware such as PUNCHTRACK and BADHATCH to infect PoS systems and steal payment card data. The group focuses on organizations in the insurance, retail, technology, and chemical industries in the U.S., Canada, South Africa, Puerto Rico, Panama, and Italy.

Retail 123

Retail Insurance Malware Phishing 123

Security Affairs

OCTOBER 24, 2020

The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. In June, security experts from Symantec reported that at least 31 organizations in the United States have been targeted with the recently discovered WastedLocker ransomware.

Ransomware 84

Ransomware Telecommunications Banking Advertising 84

Security Affairs

APRIL 26, 2021

The attackers hit companies in North America and threat actors exploited the ProxyLogon Microsoft Exchange flaws ( CVE-2021-27065 and CVE-2021-26858 ) to deliver malware in their networks. Experts pointed out that the malware has constantly been updated by its creators with the implementation of new modules and features.

Malware 64

Malware Cryptocurrency Retail Insurance 64

Security Affairs

NOVEMBER 19, 2022

Other campaigns observed by the experts invited recipients to claim gift cards from popular retailers like Home Depot. In this case, the spam messages include links to fake online survey pages that have nothing to do with the retailer’s gift card.

Scams 141

Scams Retail Password Management Phishing 141

Security Affairs

OCTOBER 23, 2022

Multiple supply chains potentially impacted Bulgaria hit by a cyber attack originating from Russia Interpol arrested 75 members of the cybercrime ring Black Axe 45,654 VMware ESXi servers reached End of Life on Oct.

Data breaches 65

Data breaches Retail Cybercrime Ransomware 65

Security Affairs

DECEMBER 12, 2019

Instead of developing their own cyber arsenal, state-sponsored hackers choose to rent malware and hacking tools because this strategy allows them to speed-up the operations and make it hard the attribution of the attack. The group was very active bank frauds , ransomware and malware campaigns, and cryptojacking attacks.

Cybercrime 62

Cybercrime Malware Hacking Advertising 62

Security Affairs

AUGUST 21, 2019

As people have growing opportunities to shop online, the chances for hackers to carry out lucrative cyberattacks in the retail sector also go up. Statistics from 2016 showed that the average cost per compromised retail record was $172. People are becoming less tolerant of retailers that have widescale data breaches.

Cybersecurity 80

Cybersecurity Retail Manufacturing Advertising 80

Security Affairs

AUGUST 20, 2021

. “ The teams remain mobilized, executing the protection and recovery plan, with all their control and security protocols, and working to re-establish all company operations.” The retailer also reported that its main databases were not impacted. . ” reads a statement from the company.

Ransomware 106

Ransomware Retail Cryptocurrency Data breaches 106