Security Affairs

MAY 27, 2025

Sophos warns that a DragonForce ransomware operator chained three vulnerabilities in SimpleHelp to target a managed service provider. Sophos researchers reported that a DragonForce ransomware operator exploited three chained vulnerabilities in SimpleHelp software to attack a managed service provider.

Ransomware 110

Ransomware Software Retail Data breaches 110

Security Affairs

MAY 2, 2025

Harrods confirmed a cyberattack, following similar incidents suffered by M&S and Co-op, making it the third major UK retailer targeted in one week. The incident marked the third UK retailer hit in a week after Marks and Spencer ( M&S) and the Co-op. ” reads a statement published by the company.

Retail 119

Retail Data breaches Internet Internet 119

SecureWorld News

JUNE 10, 2025

UNFI supplies a vast ecosystem of retailers, including Whole Foods Market, which relies heavily on its distribution network. This breach not only raises concerns about UNFI's internal resilience but also underscores broader risks to food supply chains and retail operations. UNFI also provided a systems update regarding the issue.

Cyber Attacks 105

Cyber Attacks Retail Marketing Social Engineering 105

Security Affairs

JUNE 28, 2025

The FBI reports that the cybercrime group Scattered Spider is now targeting the airline sector. Scattered Spider steals data for extortion and often launches ransomware once inside. “Once inside, Scattered Spider actors steal sensitive data for extortion and often deploy ransomware. ” continues the alert.

Social Engineering 86

Social Engineering Cybercrime Engineering Authentication 86

Security Affairs

JULY 28, 2025

The cybercrime group Scattered Spider (aka 0ktapus , Muddled Libra , Octo Tempest , and UNC3944 ) is targeting VMware ESXi hypervisors in retail, airline, and transportation sectors across North America. This threat differs from traditional Windows ransomware in two ways: speed and stealth. This bypasses in-guest security.

Social Engineering 52

Social Engineering Engineering Cybercrime Backups 52

Security Affairs

JULY 13, 2025

ransomware case U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. McDonald’s job app exposes data of 64 Million applicants Athlete or Hacker? Russian basketball player accused in U.S. warrant U.S. warrant U.S.

Data breaches 72

Data breaches Spyware Cybercrime Scams 72

Malwarebytes

FEBRUARY 4, 2025

In 2023, Malwarebytes Labs subverted these boundaries to successfully get ChatGPT to write ransomware twice. Cybercrime is a very mature field that relies on a set of well-established tools, such as phishing, information stealers, and ransomware that are already feature complete. That could change in 2025.

Artificial Intelligence 144

Artificial Intelligence Small Business Malware Technology 144

Security Affairs

MAY 3, 2025

The attackers behind the recent Co-op cyberattack, who go online with the name DragonForce, told the BBC that they had stolen data from the British retail and provided proof of the data breach. DragonForce ransomware group scrambles victims’ data and demands a ransom; they are also known to steal victims’ data.

Data breaches 82

Data breaches Cybercrime Retail Hacking 82

Security Affairs

JUNE 29, 2025

House banned WhatsApp on government devices due to security concerns Russia-linked APT28 use Signal chats to target Ukraine official with malware China-linked APT Salt Typhoon targets Canadian Telecom companies U.S.

Data breaches 65

Data breaches Ransomware Social Engineering Telecommunications 65

Security Affairs

JUNE 30, 2025

A ransomware attack on grocery giant Ahold Delhaize led to a data breach that affected more than 2.2 A ransomware attack on Dutch grocery giant Ahold Delhaize has led to a data breach affecting over 2.2 Ahold Delhaize is a Dutch-Belgian multinational retail and wholesale holding company. million people. million people.

Data breaches 93

Data breaches eCommerce Retail Accountability 93

The Hacker News

JULY 27, 2025

The notorious cybercrime group known as Scattered Spider is targeting VMware ESXi hypervisors in attacks targeting retail, airline, and transportation sectors in North America. The group's core tactics have remained consistent and do not rely on software exploits.

Retail 52

Retail Cybercrime Ransomware Software 52

Security Affairs

MAY 4, 2025

Rhysida Ransomware gang claims the hack of the Government of Peru DragonForce group claims the theft of data after Co-op cyberattack U.S. Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 77

Cybercrime Cyber Attacks Malware Phishing 77

Security Affairs

JULY 10, 2025

The cyberattacks on British retailers caused massive disruptions and huge financial losses to the businesses. In early May, the attackers behind the Co-op cyberattack, who go online with the name DragonForce , told the BBC that they had stolen data from the British retail and provided proof of the data breach.

Computers and Electronics 70

Computers and Electronics Retail Social Engineering Cyber Attacks 70

Webroot

APRIL 22, 2025

Here are some of the most likely targets for access to consumer data: Healthcare organizations : Healthcare companies are a prime target for cybercrime due to the large amounts of sensitive data they store, which includes personal information and medical records. Its like putting a lock on your personal data.

Data breaches 75

Data breaches Identity Theft Passwords eCommerce 75

Security Affairs

MAY 18, 2025

officials Shields up US retailers. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalog Kosovo authorities extradited admin of the cybercrime marketplace BlackDB.cc Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Scattered Spider threat actors can target them U.S.

Data breaches 67

Data breaches Cybercrime Ransomware Cyber Attacks 67

Security Affairs

JUNE 23, 2025

In early May, the attackers behind the Co-op cyberattack, who go online with the name DragonForce , told the BBC that they had stolen data from the British retail and provided proof of the data breach. DragonForce ransomware group scrambles victims’ data and demands a ransom; they are also known to steal victims’ data.

Retail 70

Retail Social Engineering Data breaches Cybercrime 70

Digital Shadows

NOVEMBER 26, 2024

Despite a slowdown in “LockBit” ransomware activity due to law enforcement actions and a loss of affiliate trust, it remains a key player. Meanwhile, “RansomHub” is rising rapidly due to its attractive ransomware-as-a-service (RaaS) model.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

SecureWorld News

JULY 10, 2025

The World Economic Forum warns that AI-powered cybercrime is among the top concerns shaping the 2025 threat landscape. A stark example came in early 2025: a major global retailer was breached not through its network, but via a little-known third-party SaaS provider handling employee onboarding.

Manufacturing 70

Manufacturing Software Energy and Utilities Risk 70

Security Affairs

OCTOBER 27, 2024

CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment Internet Archive was breached twice in a month Unknown threat actors exploit Roundcube Webmail flaw (..)

Data breaches 127

Data breaches Healthcare Cybercrime Hacking 127

Security Affairs

MAY 13, 2025

Marks and Spencer (M&S) confirms that threat actors stole customer data in the ransomware attack that hit the company in April. M&S is a major British multinational retailer headquartered in London. The company did not share technical details about the attack.

Data breaches 65

Data breaches Cyber Attacks Passwords Social Engineering 65

Zero Day

JUNE 22, 2025

We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. Also:   FBI warns of public 'juice jacking' charging stations.

Passwords 101

Passwords Data breaches Password Management Identity Theft 101

Security Affairs

JULY 17, 2025

United Natural didn’t disclose details about the attack, but similar disruptions in the past have often been tied to ransomware attacks. “A The impact of the UNFI cyberattack has extended beyond Whole Foods, affecting smaller retailers as well. reports Reuters. reported NBC News. ” reads the update.

Cyber Attacks 77

Cyber Attacks Insurance Retail Marketing 77

Krebs on Security

JULY 10, 2025

Authorities in the United Kingdom this week arrested four people aged 17 to 20 in connection with recent data theft and extortion attacks against the retailers Marks & Spencer and Harrods , and the British food retailer Co-op Group. KrebsOnSecurity has learned the identities of two of the suspects. In November 2024, U.S.

Cybercrime 242

Cybercrime Social Engineering Retail Mobile 242

Security Affairs

JUNE 13, 2025

United Natural didn’t disclose details about the attack, but similar disruptions in the past have often been tied to ransomware attacks. The impact of the UNFI cyberattack has extended beyond Whole Foods, affecting smaller retailers as well. ” reports Reuters. ” reported NBC News.

Retail 72

Retail Marketing Hacking Ransomware 72

Zero Day

JUNE 20, 2025

We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. Also:   FBI warns of public 'juice jacking' charging stations.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Security Affairs

JULY 14, 2025

Customers of French luxury retailer Louis Vuitton are being notified of a data breach affecting multiple countries, including the UK, South Korea, and Turkey. Louis Vuitton data breach affects customers in the UK, South Korea, Turkey, and possibly more countries, with notifications underway.

Data breaches 81

Data breaches Retail Ransomware Phishing 81

Security Affairs

APRIL 27, 2025

million patients Crooks exploit the death of Pope Francis WhatsApp introduces Advanced Chat Privacy to protect sensitive communications Android spyware hidden in mapping software targets Russian soldiers Crypto mining campaign targets Docker environments with new evasion technique The popular xrpl.js

Data breaches 70

Data breaches Spyware Malware Phishing 70

Security Affairs

MAY 11, 2025

CISA adds GoVision device flaws to its Known Exploited Vulnerabilities catalog Polish authorities arrested 4 people behind DDoS-for-hire platforms Play ransomware affiliate leveraged zero-day to deploy malware Canary Exploit tool allows to find servers affected by Apache Parquet flaw Unsophisticated cyber actors are targeting the U.S.

Spyware 67

Spyware DDOS Malware Ransomware 67

Security Affairs

MAY 29, 2025

Victorias Secret took its website offline after a cyberattack, with experts warning of rising threats against major retailers. American lingerie, clothing, and beauty retailer Victorias Secret took its website offline following a cyberattack. retailers, according to Google. Marks & Spencer now face a potential 300M loss.

Retail 87

Retail Data breaches Cyber Attacks Hacking 87

Krebs on Security

MAY 11, 2020

Diebold Nixdorf , a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations. The 35,000-employee company also produces point-of-sale systems and software used by many retailers. ” NOT SO PRO LOCK. in March. .

Ransomware 363

Ransomware Retail Malware Data breaches 363

Security Affairs

JANUARY 1, 2024

The Cactus ransomware group claims to have hacked Coop, one of the largest retail and grocery providers in Sweden. Coop is one of the largest retail and grocery providers in Sweden, with approximately 800 stores across the country. The Cactus ransomware group added Coop to the list of victims on its Tor leak site.

Retail 143

Retail Ransomware Encryption Hacking 143

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. Joker’s sold cards stolen in a steady drip of breaches at U.S.

Cryptocurrency 333

Cryptocurrency Cybercrime Government Retail 333

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. Pierluigi Paganini. SecurityAffairs – hacking, Zerologon).

Cybercrime 142

Cybercrime Security Intelligence Authentication Banking 142

Security Affairs

NOVEMBER 4, 2020

Toymaker giant Mattel disclosed a ransomware attack, the incident took place in July and impacted some of its business operations. Toy industry giant Mattel announced that it has suffered a ransomware attack that took place on July 28th, 2020, and impacted some of its business operations. ” reads the 10-Q form.

Ransomware 144

Ransomware Advertising Malware Retail 144

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. But our visibility showed otherwise.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Krebs on Security

OCTOBER 15, 2020

With the threat from ransomware attacks grabbing all the headlines, it may be tempting to assume plain old credit card thieves have moved on to more lucrative endeavors. the vast majority of the payment card data for sale in the cybercrime underground is stolen from merchants who are still swiping chip-based cards.

Data breaches 363

Data breaches Cybercrime Retail Banking 363

Security Affairs

OCTOBER 18, 2020

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method. ” reads the analysis published by FireEye.

Ransomware 143

Ransomware Malware Telecommunications Advertising 143