SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. But our visibility showed otherwise.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

SecureList

NOVEMBER 20, 2023

In 2022, global e-commerce retail revenue was estimated to reach $5.7 Methodology In this research, we examine various types of threats, such as financial malware and phishing pages that imitate the world’s largest retail platforms, banks and payment systems. In the screenshot below, a phishing site mimics Chanel.

Phishing 112

Phishing Banking Retail Scams 112

SecureWorld News

DECEMBER 15, 2022

Security researchers at Checkmarx and Illustria recently discovered a campaign in which a threat actor(s) managed to post over 144,000 phishing packages to popular open source platforms, including NPM, PyPi, and NuGet. The threat actors also used referral IDs to retail websites to benefit from referral rewards.

Phishing 61

Phishing Accountability Retail Hacking 61

Adam Levin

NOVEMBER 25, 2020

It’s a good idea to prepare for cybercrime, and whenever possible avoid becoming a victim of it. Additionally, the political season gave rise to phishing campaigns, a phenomenon that is likely to continue through the end of the year. Individuals, businesses and organizations alike need to tread carefully.

Cybersecurity 191

Cybersecurity Retail Scams Phishing 191

SC Magazine

JUNE 24, 2021

A recently reported phishing and vishing campaign was designed to impersonate Geek Squad. A new blog post report has shone a light on the malicious practice known as voice phishing or vishing – a social engineering tactic that some cyber experts say has only grown in prominence since COVID-19 forced employees to work from home.

Phishing 81

Phishing Social Engineering Scams Engineering 81

SecureWorld News

AUGUST 25, 2023

While it is a time of celebration, the weekend also marks an uptick in online scams and phishing attacks. Common Labor Day scams to watch out for Fake Retail Promotions: Cybercriminals create counterfeit websites or email campaigns that mimic legitimate retailers offering massive discounts on popular products.

Scams 85

Scams Retail Phishing Authentication 85

SiteLock

AUGUST 27, 2021

For example, in a study just published by Russian security firm Kaspersky , the number two target for phishing attacks around the world in 2013 was the financial community. Any guess what the number one target for phishing was? That includes banks, credit card companies, and payment systems like PayPal and Western Union.

Data privacy 52

Data privacy Cybercrime Banking Marketing 52

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat Research experts have monitored recent spear-phishing attacks conducted by financially motivated threat actor FIN7. ” reads the analysis published by Anomali.

Cybercrime 126

Cybercrime Retail Phishing Hacking 126

The Last Watchdog

JULY 13, 2023

The economic impact of cybercrime on business across the globe continues to reach new levels, with the cost predicted to reach US$10.5 The data shows how perceptions around cyber and technology risks, from ransomware and other cyber-attacks to the threats posed by AI, are changing the global business risk landscape.

Cyber Risk 161

Cyber Risk Risk Insurance Energy and Utilities 161

Security Affairs

JUNE 10, 2021

Group-IB, a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global scale. . Insurance companies around the world are now suffering from phishing.

Scams 104

Scams Banking Retail Insurance 104

SecureList

NOVEMBER 23, 2022

Today, e-commerce sales make up 21% of global retail sales, which is a 50% increase on the pre-pandemic levels. In this research, we analyze various types of threats, such as financial malware and phishing pages mimicking the world’s biggest retail platforms, banking and payment systems, and discuss recent trends.

Phishing 99

Phishing Banking Scams Retail 99

Joseph Steinberg

JUNE 1, 2021

While some meal-kit-service-scam messages contain spelling and grammatical errors, the smishing message (smishing is phishing via text message) that I received did not suffer from such deficiencies; it appeared as well written as typical businesses correspondence. rate of growth experienced the year prior.

Artificial Intelligence 287

Artificial Intelligence Scams Retail Phishing 287

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini. SecurityAffairs – SDBbot RAT, TA505).

Cybercrime 45

Cybercrime Advertising Retail Banking 45

Security Affairs

NOVEMBER 19, 2022

Other campaigns observed by the experts invited recipients to claim gift cards from popular retailers like Home Depot. In this case, the spam messages include links to fake online survey pages that have nothing to do with the retailer’s gift card.

Scams 144

Scams Retail Password Management Phishing 144

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 112

Social Engineering Spyware Data breaches Surveillance 112

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505.

Cybercrime 97

Cybercrime Banking Malware Retail 97

McAfee

NOVEMBER 8, 2021

Supply chain and logistics, e-commerce and retail, and the travel industry traditionally experience holiday seasonal increases in consumer and business activity, making them more vulnerable to cyber threats and leaving business, employee, and consumer data at risk. E-Commerce and Retail. of the total detected cyber threats.

Cyber threats 107

Cyber threats Retail Risk Architecture 107

Security Affairs

OCTOBER 18, 2020

Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK. ” The attack chain starts when the victims enable the macro embedded in an Excel spreadsheet that came with the phishing e-mails. . ” reads the analysis published by FireEye.

Ransomware 130

Ransomware Malware Telecommunications Advertising 130

Krebs on Security

AUGUST 12, 2018

” Organized cybercrime gangs that coordinate unlimited attacks typically do so by hacking or phishing their way into a bank or payment card processor. In both cases, the attackers managed to phish someone working at the Blacksburg, Virginia-based small bank.

Banking 211

Banking Accountability Retail Phishing 211

Security Affairs

NOVEMBER 8, 2021

Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Media Markt is a German multinational chain of stores selling consumer electronics with over 1000 stores in Europe.

Computers and Electronics 119

Computers and Electronics Ransomware Retail Spyware 119

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. Customers are recommended to be vigilant because they can be targeted in frauds and phishing attacks. “We want to apologise to those customers who may have been affected by this incident.

Data breaches 97

Data breaches Retail Passwords Scams 97

Security Affairs

OCTOBER 15, 2018

Group-IB: The online market for counterfeit goods in Russia has reached $1,5 billion, while the number of phishing attacks has surpassed 1,200 daily. It also leads to a decrease in what we call the psychological price, i.e. the cost that customers are willing to pay for a product from the official retailer.

Marketing 82

Marketing Phishing Media Engineering 82

SecureList

FEBRUARY 23, 2022

We look at phishing threats commonly encountered by users and companies as well as the prevalence of various Windows and Android-based financial malware. Phishing: In 2021, 8.2% of users were hit by phishing. E-commerce-related phishing continued to exceed banking-related phishing, as it did in 2020, making up 17.6%

Banking 94

Banking Phishing Cryptocurrency Malware 94

SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. BlueNoroff developed an elaborate phishing campaign that targeted startups and distributed malware for stealing all crypto in the account tied to the device.

Banking 71

Banking Phishing Cryptocurrency Mobile 71

Security Affairs

FEBRUARY 6, 2022

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 352 appeared first on Security Affairs.

Social Engineering 89

Social Engineering Cryptocurrency Small Business Ransomware 89

Security Affairs

JANUARY 13, 2019

Proofpoint analyzed two strains of malware tracked as ServHelper and FlawedGrace distributed through phishing campaigns by the TA505 crime gang. Security researchers at Proofpoint researchers discovered two strains of malware tracked as ServHelper and FlawedGrace distributed through phishing campaigns by the TA505 crime gang.

Malware 99

Malware DNS Financial Services Retail 99

Security Affairs

FEBRUARY 2, 2020

An ongoing phishing campaign launched by TA505 is using attachments featuring HTML redirectors for delivering malicious Excel docs. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. In contrast, past Dudear email campaigns carried the malware as attachment or used malicious URLs.

Malware 87

Malware Security Intelligence Banking Phishing 87

Security Affairs

AUGUST 25, 2021

The group focuses on organizations in the insurance, retail, technology, and chemical industries in the U.S., The group has been active since 2016, it leverages known malware such as PUNCHTRACK and BADHATCH to infect PoS systems and steal payment card data. Canada, South Africa, Puerto Rico, Panama, and Italy.

Retail 123

Retail Insurance Malware Phishing 123

SecureWorld News

AUGUST 4, 2022

Most recently, a former T-Mobile retail store owner was convicted for stealing employee credentials to illegally access internal computer systems and unlock and unblock cellphones. The former store owner used various phishing techniques to steal T-Mobile employee credentials. How was he unlocking these phones?

Mobile 76

Mobile Identity Theft Social Engineering Retail 76

Security Affairs

JUNE 12, 2019

At the time, FireEye and root9B published detailed reports about a series of attacks targeting the retail sector. “It is believed that the malware was deployed as a result of several phishing attempts.” ” Experts believe the attackers launched phishing attacks in the attempt of delivering PoS malware.

Hacking 80

Hacking Malware Advertising Retail 80

Security Boulevard

MARCH 31, 2021

UK fashion retailer FatFace angered customers in its handling of a customer data theft hack. The clothes retailer revealed a data theft which included its customer's full names, home addresses, email addresses, and partial debitcredit card details. conduct employee phishing tests. conduct employee phishing tests.

Energy and Utilities 120

Energy and Utilities Ransomware Banking Hacking 120

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. Cracking down hard on the cybercrime world. Analysis of forecasts for 2021. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

Security Boulevard

JUNE 26, 2023

Unfortunately, the increasing reliance on digital systems and capabilities has also attracted an ever-growing number of malicious actors seeking to defraud businesses through phishing , social engineering , or ransomware attacks. Rapid technological advancements and potential security gaps due to the growing sophistication of cybercrimes.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Thales Cloud Protection & Licensing

AUGUST 31, 2022

That is why criminals have historically chosen to focus on this industry over the years, with organized crime evolving into organized cybercrime. Ransomware and malware were ranked as the leading threat (cited by 59% of respondents), followed by phishing and denial of service, both at 37%, and man-in-the-middle attacks at 31%.

Financial Services 62

Financial Services Cybersecurity Computers and Electronics Banking 62

SecureWorld News

OCTOBER 12, 2022

It is sadly the case that ecommerce cybercrime is on the rise. As cybercriminals do seem to be taking a keener interest in the industry, it is up to owners of ecommerce businesses to be extra vigilant about cybercrime and put appropriate defenses in place to keep the company secure. Major risks for online retailers.

eCommerce 73

eCommerce Cybercrime Retail Phishing 73

Security Affairs

DECEMBER 13, 2019

According to the new alert issued by the PFD, in the first incident crooks compromised compromise a North American fuel dispenser merchant using a phishing email to deliver a Remote Access Trojan (RAT) to the target network. “The threat actors compromised the merchant via a phishing email sent to an employee. Pierluigi Paganini.

Cyber Attacks 72

Cyber Attacks Malware Cybercrime Advertising 72

SecureWorld News

NOVEMBER 17, 2022

Secret Service; Cathy Click, Phishing Defense and Education, FedEx; and Fabiola Fernandez, Product Marketing Manager, Security Awareness Training, Proofpoint. Also, check out our recent post on "Holiday Season Cyber Threat Trends for Retail, Hospitality Industries.".

Scams 71

Scams Security Awareness Retail Cyber threats 71