Security Affairs

MAY 1, 2025

A cybercrime group named Hive0117 is behind a fresh phishing campaign that targeted Russian organizations with a new version of the DarkWatchman malware, according to Russian cybersecurity firm F6. Hive0117 targets Russian firms in multiple sectors with phishing attacks using a modified version of the DarkWatchman malware.

Malware 90

Malware Phishing Telecommunications Antivirus 90

Security Affairs

MAY 15, 2025

“ Coinbase will reimburse scammed retail users after verification, it is also opening a new support hub in the U.S. and adding stronger security controls and monitoring across all locations. .” reads the statement published by the company on its website. We said no.

Data breaches 89

Data breaches Banking Accountability Retail 89

Security Affairs

JULY 13, 2025

CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog Hunters International ransomware gang shuts down and offers free decryption keys to all victims International Press – Newsletter Cybercrime From electrician to pivot of a million-dollar scam in the financial system: find out who is the IT operator who sold passwords to (..)

Data breaches 70

Data breaches Spyware Cybercrime Ransomware 70

Security Affairs

MAY 3, 2025

The attackers behind the recent Co-op cyberattack, who go online with the name DragonForce, told the BBC that they had stolen data from the British retail and provided proof of the data breach. They also called the head of security at the company around a week ago. .

Data breaches 80

Data breaches Cybercrime Retail Hacking 80

Security Affairs

MARCH 30, 2025

These stores operate on a bulk retail model, offering members discounted prices on a wide range of products, including electronics, clothing, food, and household items. Sam’s Club is a membership warehouse club chain in the United States, owned by Walmart. compared to the previous year.

Ransomware 120

Ransomware Data breaches Software Hacking 120

Security Affairs

JUNE 29, 2025

House banned WhatsApp on government devices due to security concerns Russia-linked APT28 use Signal chats to target Ukraine official with malware China-linked APT Salt Typhoon targets Canadian Telecom companies U.S.

Data breaches 63

Data breaches Ransomware Social Engineering Telecommunications 63

Security Affairs

JUNE 30, 2025

Ahold Delhaize is a Dutch-Belgian multinational retail and wholesale holding company. A ransomware attack on grocery giant Ahold Delhaize led to a data breach that affected more than 2.2 million people. A ransomware attack on Dutch grocery giant Ahold Delhaize has led to a data breach affecting over 2.2 million people.

Data breaches 91

Data breaches eCommerce Retail Accountability 91

Security Affairs

JULY 10, 2025

The cyberattacks on British retailers caused massive disruptions and huge financial losses to the businesses. In early May, the attackers behind the Co-op cyberattack, who go online with the name DragonForce , told the BBC that they had stolen data from the British retail and provided proof of the data breach.

Computers and Electronics 68

Computers and Electronics Retail Social Engineering Cyber Attacks 68

Security Affairs

MAY 4, 2025

Mail, Broadcom Brocade Fabric OS, and Commvault Web Server flaws to its Known Exploited Vulnerabilities catalog The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia A large-scale phishing campaign targets WordPress WooCommerce (..)

Cybercrime 75

Cybercrime Cyber Attacks Malware Phishing 75

Security Affairs

OCTOBER 27, 2024

CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment Internet Archive was breached twice in a month Unknown threat actors exploit Roundcube Webmail flaw (..)

Data breaches 125

Data breaches Healthcare Cybercrime Hacking 125

Security Affairs

JUNE 23, 2025

In early May, the attackers behind the Co-op cyberattack, who go online with the name DragonForce , told the BBC that they had stolen data from the British retail and provided proof of the data breach. They also called the head of security at the company around a week ago. The attack exposed retail supply chain and IT fragility.

Retail 68

Retail Social Engineering Data breaches Cybercrime 68

Security Affairs

MAY 18, 2025

officials Shields up US retailers. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalog Kosovo authorities extradited admin of the cybercrime marketplace BlackDB.cc Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Scattered Spider threat actors can target them U.S.

Data breaches 66

Data breaches Cybercrime Ransomware Cyber Attacks 66

Security Affairs

MAY 13, 2025

The company immediately reported the incident to the relevant data protection supervisory authorities and the National Cyber Security Centre. M&S is a major British multinational retailer headquartered in London. The company did not share technical details about the attack.

Data breaches 63

Data breaches Cyber Attacks Passwords Social Engineering 63

Security Affairs

JULY 17, 2025

The impact of the UNFI cyberattack has extended beyond Whole Foods, affecting smaller retailers as well. The Community Food Co-Op in Bellingham, Washington, informed customers that due to UNFI being its main supplier, some shelves may look bare. ” reads the update.

Cyber Attacks 75

Cyber Attacks Insurance Retail Marketing 75

Security Affairs

JUNE 13, 2025

The impact of the UNFI cyberattack has extended beyond Whole Foods, affecting smaller retailers as well. The Community Food Co-Op in Bellingham, Washington, informed customers that due to UNFI being its main supplier, some shelves may look bare.

Retail 70

Retail Marketing Hacking Ransomware 70

Security Affairs

APRIL 27, 2025

million patients Crooks exploit the death of Pope Francis WhatsApp introduces Advanced Chat Privacy to protect sensitive communications Android spyware hidden in mapping software targets Russian soldiers Crypto mining campaign targets Docker environments with new evasion technique The popular xrpl.js

Data breaches 68

Data breaches Spyware Malware Retail 68

Security Affairs

MAY 11, 2025

CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog Google fixed actively exploited Android flaw CVE-2025-27363 New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR Smishing on a Massive Scale: Panda Shop Chinese Carding Syndicate Kelly Benefits December data breach impacted over 400,000 individuals A (..)

Spyware 66

Spyware Ransomware DDOS Malware 66

Security Affairs

JULY 14, 2025

Customers of French luxury retailer Louis Vuitton are being notified of a data breach affecting multiple countries, including the UK, South Korea, and Turkey. Louis Vuitton data breach affects customers in the UK, South Korea, Turkey, and possibly more countries, with notifications underway.

Data breaches 79

Data breaches Retail Ransomware Phishing 79

Security Affairs

MAY 29, 2025

Victorias Secret took its website offline after a cyberattack, with experts warning of rising threats against major retailers. American lingerie, clothing, and beauty retailer Victorias Secret took its website offline following a cyberattack. retailers, according to Google. Marks & Spencer now face a potential 300M loss.

Retail 85

Retail Data breaches Cyber Attacks Hacking 85

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million MyDeal customers. million of them. Pierluigi Paganini.

Data breaches 140

Data breaches Retail Passwords Accountability 140

Security Affairs

APRIL 14, 2024

A threat actor claimed the hack of the Canadian retail chain Giant Tiger and leaked 2.8 A threat actor, who goes online with the moniker ShopifyGUY, claimed responsibility for hacking the Canadian retail chain Giant Tiger and leaked 2.8 New breach: Canadian retailer Giant Tiger had 2.8M million records on a hacker forum.

Retail 143

Retail Data breaches Hacking Cybercrime 143

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. Pierluigi Paganini. SecurityAffairs – hacking, Zerologon).

Cybercrime 141

Cybercrime Security Intelligence Authentication Banking 141

Security Affairs

NOVEMBER 12, 2021

Costco Wholesale Corporation discloses a data breach, threat actors had access to customers’ payment card information. Retail giant Costco Wholesale Corporation notified its customers of a data breach that might have exposed their payment card information. Follow me on Twitter: @securityaffairs and Facebook.

Retail 120

Retail Data breaches eCommerce Hacking 120

Security Affairs

FEBRUARY 4, 2022

Retail giant Target is going to open-source an internal tool, dubbed Merry Maker , designed to detect e-skimming attacks. Retail giant Target announced the release in open-source of an internal tool, dubbed Merry Maker , designed to detect e-skimming attacks. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Retail 112

Retail Hacking Cybersecurity Software 112

Security Affairs

JANUARY 15, 2023

The Canadian Liquor Control Board of Ontario (LCBO), the largest beverage alcohol retailer in the country, disclosed Magecart attack. Canadian Liquor Control Board of Ontario (LCBO), the largest beverage alcohol retailer in the country, disclosed a Magecart attack on January 10, 2023. Pierluigi Paganini.

Retail 98

Retail Mobile Passwords Hacking 98

Hot for Security

APRIL 19, 2021

Notorious FIN7 gang stole payment card details from retailers around the world Cybercrime gang posed as penetration testing firm to recruit hackers. A key member of the FIN7 cybercrime gang – which is said to have caused over one billion dollars worth of damage around the world – has been sentenced to 10 years in jail.

Penetration Testing 144

Penetration Testing Retail Cybersecurity Cybercrime 144

Security Affairs

MARCH 2, 2023

Retailer WH Smith disclosed a data breach following a cyber attack, threat actors had access to access company data. Retailer WH Smith revealed that threat actors have breached its infrastructure and had access to the data of about 12,500 current and former employees.

Retail 76

Retail Data breaches Cyber Attacks Hacking 76

Krebs on Security

JULY 25, 2023

Malware-based anonymity networks are a major source of unwanted and malicious web traffic directed at online retailers, Internet service providers (ISPs), social networks, email providers and financial institutions. SocksEscort began in 2009 as “ super-socks[.]com SocksEscort began in 2009 as “ super-socks[.]com com, super-socks[.]com,

Malware 246

Malware VPN Internet Internet 246

Security Affairs

JULY 17, 2024

The world’s largest recreational boat and yacht retailer MarineMax, disclosed a data breach following a cyber attack. The world’s largest recreational boat and yacht retailer MarineMax disclosed a data breach that impacted over 123,000 individuals.

Data breaches 134

Data breaches Retail Cyber Attacks Ransomware 134

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat Research experts have monitored recent spear-phishing attacks conducted by financially motivated threat actor FIN7. ” reads the analysis published by Anomali.

Cybercrime 145

Cybercrime Retail Phishing Hacking 145

Security Affairs

OCTOBER 20, 2021

The incident was disclosed after threat actors have advertised the sale of more than 60 GB of data on an underground cybercrime forum. The threat actors now claim to have breached the servers of Acer Taiwan on October 15th and have stolen internal data, including employee and product information.

Data breaches 140

Data breaches Cybercrime Hacking Retail 140

Security Affairs

JUNE 10, 2021

Group-IB, a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global scale. . Over the past year, an average of over 100 phishing websites were created per insurer.

Scams 135

Scams Banking Insurance Cybercrime 135

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini.

Cybercrime 66

Cybercrime Advertising Retail Banking 66

Security Affairs

JANUARY 9, 2019

Early 2014, the high-end retailer confirmed a data breach, the incident happened a few weeks after the clamorous data breach at US giant retailer Target. Security Affairs – settlement, cybercrime ). million settlement with Neiman Marcus appeared first on Security Affairs. billion in the Q4 2013.

Data breaches 91

Data breaches Retail Advertising Cybercrime 91

Security Affairs

NOVEMBER 4, 2020

“A forensic investigation of the incident has concluded, and no exfiltration of any sensitive business data or retail customer, supplier, consumer, or employee data was identified. Mattel contained the attack and, although some business functions were temporarily impacted, Mattel restored its operations.”

Ransomware 144

Ransomware Advertising Malware Retail 144

Security Affairs

MAY 12, 2024

Most of the victims are in the manufacturing, engineering and construction, and retail sectors. Recommendations provided in the report include installing updates promptly, using phishing-resistant multi-factor authentication (MFA), securing remote access software, making backups, and applying mitigations from the #StopRansomware Guide.

Ransomware 144

Ransomware Hacking Healthcare Cybercrime 144

Security Affairs

NOVEMBER 12, 2019

The analysis of a malicious email revealed a possible raising interest of the TA505 cybercrime gang in system integrator companies. The infrastructure used in the attacks suggests the involvement of the cybercrime group TA505. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. Introduction.

Cybercrime 62

Cybercrime Computers and Electronics Penetration Testing Malware 62