Collaborate Disseminate
A digital intrusion at PCM Inc., a major U.S.-based cloud solution provider, allowed hackers to access email and file sharing systems for some of the company’s clients, KrebsOnSecurity has learned. Continue reading Breach at Cloud Solution Provider PCM Inc.
The high-profile breach of Indian IT giant Wipro earlier this year was but one part in a series of campaigns carried out by a set of money-driven hackers over the last three years, researchers said Wednesday. The scheme, as documented by cybersecurity company RiskIQ, covered essentially the whole ecosystem of companies involved in gift-card transactions – from distributors to payment processors to IT providers, with shopping-industry giants Best Buy, Costco, and Sears among the organizations targeted with phishing emails. The hackers employed open-source software whose use is difficult to attribute, and they even turned an anti-phishing training platform on its head to target organizations, the researchers said. “RiskIQ has identified at least five distinct attack campaigns based off analysis of the actor-owned infrastructure,” the San Francisco-based company said in a report. RiskIQ emphasized that the organizations listed were targeted but not necessarily breached, by the hackers. However, the report notes, the hackers’ “operational tempo increased to ramp […]
The post Gift-card scheme went well beyond Wipro hack, RisKIQ reports appeared first on CyberScoop.
Continue reading Gift-card scheme went well beyond Wipro hack, RisKIQ reports
It’s a good time to be in the credit card-stealing business. Hacking associations like Magecart — a loose collection of at least 12 groups that specialize in skimming payment data from digital checkout pages — are carrying out more efficient attacks to walk off with online shoppers’ data. By injecting malicious code into vulnerable e-commerce systems in anywhere from the payment system Magento to advertisements and analytics pages, thieves are able to exfiltrate payment information without detection. Before scammers hit Amazon’s CloudFront content delivery network last week and Forbes magazine in May, Magecart was best known for shaking down popular sites like Ticketmaster and British Airways. Each group relies on different techniques, ranging from exploiting server vulnerabilities to using unique skimming code and, in the case of Group 5, which was blamed for the Ticketmaster breach, hacking third party suppliers. “It’s like a shotgun approach to mass compromise,” said Yonathan […]
The post Magecart’s ‘shotgun approach’ to payment card theft is wreaking havoc on e-commerce sites appeared first on CyberScoop.
One year after the EU General Data Protection Regulation (GDPR) went into effect, 1 in 10 PII capturing websites belonging to the top 10 UK financial services organizations are still doing so without adequate security measures, potentially breaching GD… Continue reading PII capturing websites still applying poor security measures one year after GDPR
Convincing phishing pages and millions of suspicious apps are plaguing tax season. Continue reading ThreatList: Tax Scammers Launch a Raft of Fake Mobile Apps
Security researchers have flagged a new web-based supply chain attack by one of the cybercriminal groups that fall under the Magecart umbrella. The attackers managed to compromise Adverline, a French online advertising company with a European-focused c… Continue reading Compromised ad company serves Magecart skimming code to hundreds of websites
Hundreds of e-commerce websites have been hit with a card-skimming attack that compromised an advertising plugin, according to research from Trend Micro and RiskIQ. It’s the latest in a series of attacks linked to Magecart, an umbrella term for a set of hacking groups that use different methods to steal payment data from websites. Researchers said that while the attack resembled previous Magecart incidents, this one appears to have originated with a relatively new group that RiskIQ dubbed “Magecart Group 12.” Group 12’s attack affected 277 “ticketing, touring, and flight booking services as well as self-hosted shopping cart websites from prominent cosmetic, healthcare, and apparel brands,” according to Trend Micro. The researchers said the group had been a minor player in the past, finding ways to inject its code into individual e-commerce websites. But when the hackers infected a JavaScript library used by the French advertising firm Adverline in 2018, […]
The post New ‘Magecart’ group used ad plugin to steal payment data from hundreds of websites appeared first on CyberScoop.
Continue reading New ‘Magecart’ group used ad plugin to steal payment data from hundreds of websites
According to the APWG’s new Phishing Activity Trends Report, after spiking in the spring, phishing has been taking place at a steady pace — but phishers are using new techniques to carry out their attacks – and obfuscate their origins – to make the mos… Continue reading Cybercrime gangs continue to innovate to hide their crimes
The holiday season has become an unbridled online spending extravaganza, and threat actors have taken notice. For shoppers, what starts out as an attempt to fulfill their holiday shopping checklist for pennies on the dollar can turn into a financial ni… Continue reading The holiday season and cybercrime: 8 ways to protect yourself
If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, neglected domains have been getting scooped up by crooks who use them to set up fake e-commerce sites that steal credit card details from unwary shoppers. Continue reading That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards