2014, Information Security and Retail - Information Management Today

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Security Affairs

NOVEMBER 25, 2020

Retail giant Home Depot has agreed to a $17.5 million settlement in a multi-state investigation of the data breach that the company suffered in 2014. The US largest home improvement retailer giant Home Depot agrees to $17.5 million settlement over the 2014 data breach. The post Retail giant Home Depot agrees to a $17.5

Retail

Retail Data breaches Information Security Security awareness

Staples discloses data breach exposing customer order data

Security Affairs

SEPTEMBER 14, 2020

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. Staples, the office retail giant, disclosed a data breach, it notified its customers that their order data have been accessed by threat actors without authorization. Pierluigi Paganini.

Data breaches

Data breaches Retail Access IT

Experts report a rampant growth in the number of malicious, lookalike domains

Security Affairs

NOVEMBER 18, 2019

Cyber security firm Venafi announced it has uncovered lookalike domains with valid TLS certificates that appear to target major retailers. is a private cybersecurity company that develops software to secure and protect cryptographic keys and digital certificates. retailers with over 49,500 typosquatted domains.

Retail

Retail Encryption Phishing Authentication

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Manufacturing Ransomware Security

State attorneys general announced a $1.5 million settlement with Neiman Marcus

Security Affairs

JANUARY 9, 2019

million settlement with The Neiman Marcus Group LLC over a data breach suffered by the company in 2013 and disclosed earlier 2014. Early 2014, the high-end retailer confirmed a data breach, the incident happened a few weeks after the clamorous data breach at US giant retailer Target. billion in the Q4 2013. .

Data breaches

Data breaches Retail Sales Personal data

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

Agent Tesla , first discovered in late 2014, is an extremely popular “malware-as-a-service” Remote Access Trojan (RAT) tool used by threat actors to steal information such as credentials, keystrokes, clipboard data and other information from its operators’ targets.

Financial Services

Financial Services Retail Education Information Security

Hackers stole credit card data from JM Bullion online bullion dealer

Security Affairs

NOVEMBER 2, 2020

JM Bullion, the leading online bullion dealer in the United States, has disclosed a data breach, hackers stole customers’ credit card information. JM Bullion, the online retailer of products made of precious metals (i.e. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches

Data breaches Retail Security IT

Accessories giant Claire’s is the victim of a Magecart attack, credit card data exposed

Security Affairs

JUNE 15, 2020

based jewelry and accessory giant Claire’s, and its subsidiary Icing, the security breach took place in April and attackers may have gained access to customer’s credit cards. “Claire’s, a fashion retailer, closed all of its 3000 brick & mortar stores worldwide on March 20th. Pierluigi Paganini.

Retail

Retail Access Cybersecurity Security

Neiman Marcus discloses data breach, payment card data exposed

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data.

Data breaches

Data breaches Retail Passwords Access

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Mandiant researchers highlighted an important with operations conducted by the TA505 cybercrime gang (aka Evil Corp ), which has been active since 2014 focusing on retail and banking sectors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, FIN11).

Ransomware

Ransomware IT Healthcare Phishing

Toymaker giant Mattel disclosed a ransomware attack

Security Affairs

NOVEMBER 4, 2020

“A forensic investigation of the incident has concluded, and no exfiltration of any sensitive business data or retail customer, supplier, consumer, or employee data was identified. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Retail Encryption IT

Threat Report Portugal: Q2 2020

Security Affairs

AUGUST 14, 2020

Next, was Retail and Financing, as the most sectors affected in this season. Pedro Tavares is a professional in the field of information security, working as an Ethical Hacker, Malware Analyst, Cybersecurity Analyst and also a Security Evangelist. Threats by Sector.

Phishing

Phishing Data collection Retail Security awareness

Key Ring digital wallet exposes data of 14 Million users in data leak

Security Affairs

APRIL 6, 2020

The images include scans of government-issued IDs, retail club membership and loyalty cards, NRA membership cards, gift cards, credit cards with all details exposed (including CVV), medical insurance cards, medical marijuana ID cards, and more. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Encryption Insurance Passwords

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Since at least 2014, experts at FireEye have observed the APT32 group targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. ” said Nathaniel Gleicher, Head of Security Policy at Facebook, and Mike Dvilyanski, Cyber Threat Intelligence Manager.

Agriculture

Agriculture IT Retail Manufacturing

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

The US-based children’s clothing maker and online retailer Hanna Andersson discloses a data breach, attackers planted an e-skimmer on its e-commerce platform. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Retail Cloud Insurance

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Zerologon).

Authentication

Authentication Retail Passwords Ransomware

Report: Threat of Emotet and Ryuk

Security Affairs

JANUARY 31, 2020

Analyzing the general distribution of the compromised domains, grouped by category, it is possible to verify that the most affected were as follows: professional/companies (20.2%), personal (13.5%), retail (12.7%) and industry (11.9%). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. DOWNLOAD FULL REPORT.

Ransomware

Ransomware Retail Phishing Encryption

Threat Report Portugal Q1 2020

Security Affairs

APRIL 20, 2020

Next, was Financing due to the Lampion Trojan and Retail, as the most sectors affected in this season. Pedro Tavares is a professional in the field of information security, working as an Ethical Hacker, Malware Analyst, Cybersecurity Analyst and also a Security Evangelist. EDP Group ransomware attack via RagnarLocker ).

Phishing

Phishing Retail Security awareness Data collection

Did H&M spy on its German employees? Privacy watchdog opens an investigation

Security Affairs

JANUARY 27, 2020

A German p rivacy watchdog is investigating into clothing retailer H&M because it was allegedly spying on its customer service representatives in Germany. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Privacy

Privacy IT Retail Sales

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Security Affairs

MARCH 30, 2020

One way to do this is NOT to click on promotional links in emails, and instead, Google your desired retailer and click the link from the Google results page. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Communications

Communications Retail Authentication Government

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. It is the largest office furniture manufacturer in the world.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

Croatia’s largest petrol station chain INA group hit by ransomware attack

Security Affairs

FEBRUARY 20, 2020

” reads a security breach notice published by the company on its website. “Market supply is secure. Fuel sales at our retail locations continue unhindered. All payments are secure, whether it is a cash payment, an INA card or a bank card. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Encryption Retail Sales

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware IT Retail Manufacturing

Wawa card breach: 30 million card records for sale in the dark web

Security Affairs

JANUARY 29, 2020

In December 2019, Wawa convenience store chain disclosed a payment card breach, its security team discovered a PoS malware on its payment processing systems. Wawa operates more than 860 convenience retail stores, this breach is potentially one of the biggest card incidents in 2019. ” concludes Gemini. Pierluigi Paganini.

Sales

Sales Data breaches Retail Security

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

Security Affairs

AUGUST 21, 2019

As people have growing opportunities to shop online, the chances for hackers to carry out lucrative cyberattacks in the retail sector also go up. Statistics from 2016 showed that the average cost per compromised retail record was $172. People are becoming less tolerant of retailers that have widescale data breaches.

Cybersecurity

Cybersecurity Retail Manufacturing Data breaches

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Retail Manufacturing Encryption

SEC Charges Shopin Founder with fraud over unregistered $42M ICO

Security Affairs

DECEMBER 13, 2019

Eyal launched an Initial Coin Offerings (ICOs) to raise funding to create universal shopper profiles, maintained on the blockchain , that would track customer purchase histories across online retailers and recommend products based on the collected data. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Blockchain Security IT

440M records found online in unprotected database belonging to Estée Lauder

Security Affairs

FEBRUARY 11, 2020

Estée L auder is an American multinational manufacturer and marketer of p restige skincare, makeup, fragrance and hair care p roducts, it owns multiple brands, distributed internationally through both digital commerce and retail channels. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Archiving

Archiving Retail Manufacturing Passwords

Lumber Liquidators hit by malware attack that took down its network

Security Affairs

AUGUST 29, 2019

Lumber Liquidators, a leading specialty retailer of hard-surface flooring in North America, announced that a malware attack took down its network. North American hard-surface flooring retailer Lumber Liquidators revealed that it was victim of a security incident, a malware-based attack took down part of its network for nearly a week. .

IT

IT Retail Security Information Security

Payment card breach potentially impacts all locations of Wawa convenience store

Security Affairs

DECEMBER 20, 2019

Wawa convenience store chain disclosed a payment card breach, its security team discovered a PoS malware on its payment processing systems. Wawa operates more than 860 convenience retail stores, this breach is potentially one of the biggest card incidents in 2019. We continue to take steps to enhance the security of our systems.”

Data breaches

Data breaches Retail Information Security Security

Leicester City Football Club disclosed a card breach

Security Affairs

JUNE 2, 2019

The club also informed the authorities and the Information Commissioners Office (ICO), it also launched an immediate investigation. “Upon discovery of the breach, the security of our retail platform was immediately restored and appropriate measures were taken to ensure the security of all other online assets.”

Retail

Retail Cybersecurity Security IT

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

.” PIONEER KITTEN hackers to date have focused their attacks against entities in North American and Israeli, while targeted sectors include technology, government, defense, healthcare, aviation, media, academic, engineering, consulting and professional services, chemical, manufacturing, financial services, insurance, and retail. .

Access

Access Financial Services Retail Insurance

Neiman Marcus Agrees to Settlement in Data Breach Class Action

Hunton Privacy

MARCH 21, 2017

On March 17, 2017, retailer Neiman Marcus agreed to pay $1.6 The consumer plaintiffs sued Neiman Marcus in March 2014, alleging that the company failed to protect customers’ privacy and waited 28 days to inform affected customers of the breach.

Data breaches

Data breaches Retail Information Security Education

Researcher leaked a dataset of over 7,000,000 transactions scraped from the Venmo public API

Security Affairs

JUNE 18, 2019

Public data includes names, dates, pictures and messages sent, Hang Do Thi Duc was able to track a profile for some of them, such as two users identified with the monikers ‘The Cannabis Retailer’ and the ‘The cord dealer.’ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Privacy Access Security

California IT service provider Synoptek pays ransom after Sodinokibi attack

Security Affairs

JANUARY 5, 2020

Synoptek has more than 1,100 customers across multiple industries, including local governments, financial services, healthcare, manufacturing, media, retail and software. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IT

IT Ransomware Financial Services Retail

Maastricht University finally paid a 30 bitcoin ransom to crooks

Security Affairs

FEBRUARY 9, 2020

. “The modus operandi of the group behind this specific attack comes over with a criminal group that already has one has a long history, and goes back to at least 2014,” reads the Fox-IT full report to UM (in Dutch). TA505 hacking group has been active since 2014 focusing on Retail and banking sectors.

Ransomware

Ransomware Encryption Passwords Retail

Nedbank client data compromised in security breach at third-party provider

Security Affairs

FEBRUARY 14, 2020

“We have moved swiftly to proactively secure and destroy all Nedbank client information held by Computer Facilities (Pty) Ltd. Information from Nedbank Retail relating to approximately 1,7 million clients was potentially affected of which 1,1 million are active clients.” ” continues the notice.

Security

Security Marketing Retail Communications

TA505 is expanding its operations

Security Affairs

MAY 29, 2019

The threat group is also known for its recent attack campaign against Bank and Retail business sectors, but the latest evidence indicates a potential expansion of its criminal operation to other industries too. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Technical Analysis. Pierluigi Paganini.

IT

IT Retail Archiving File names

Croatia government agencies targeted with news SilentTrinity malware

Security Affairs

JULY 7, 2019

The phishing messages posed as delivery notifications from the Croatian postal or other retail services, they included a Microsoft Excel saved in the old.xls format and compiled the previous day. The attack against Croatia was also spotted by experts at Information Systems Security Bureau (ZSIS) that issued two alerts about the attacks-.

Government

Government Computer and Electronics Archiving Phishing

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Security Affairs

OCTOBER 15, 2020

is an American bookseller with the largest number of retail outlets in the United States in fifty states. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Barnes & Noble, Inc. , Pierluigi Paganini. The post U.S.

Ransomware

Ransomware Encryption Retail Access

Russia-Linked TA505 targets financial institutions in a new malspam campaign

Security Affairs

OCTOBER 16, 2021

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. Evil Corp) is leveraging a lightweight Office file in a new malware campaign, tracked as MirrorBlast , targeting financial institutions in multiple geographies.

Retail

Retail Ransomware Security IT

Nodersok malware delivery campaign relies on advanced techniques

Security Affairs

SEPTEMBER 28, 2019

About 3% of the infected systems belong to organizations in different sectors, including education, professional services, healthcare, finance, and retail. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

e-Delivery

e-Delivery Retail Libraries Education

Security Affairs newsletter Round 291

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Security

Security Data breaches Ransomware Retail

Threat Report Portugal: Q3 2020

Security Affairs

NOVEMBER 6, 2020

Next, was Retail and Financing, as the most sectors affected in this season. Pedro Tavares is a professional in the field of information security, working as an Ethical Hacker, Malware Analyst, Cybersecurity Analyst and also a Security Evangelist. Threats by Sector.

Phishing

Phishing Retail Security awareness Data collection

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Staples discloses data breach exposing customer order data

Trending Sources

Experts report a rampant growth in the number of malicious, lookalike domains

Hackers hit Luxottica, production stopped at two Italian plants

State attorneys general announced a $1.5 million settlement with Neiman Marcus

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Hackers stole credit card data from JM Bullion online bullion dealer

Accessories giant Claire’s is the victim of a Magecart attack, credit card data exposed

Neiman Marcus discloses data breach, payment card data exposed

FIN11 gang started deploying ransomware to monetize its operations

Toymaker giant Mattel disclosed a ransomware attack

Threat Report Portugal: Q2 2020

Key Ring digital wallet exposes data of 14 Million users in data leak

Facebook links cyberespionage group APT32 to Vietnamese IT firm

US-based children’s clothing maker Hanna Andersson discloses a data breach

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Report: Threat of Emotet and Ryuk

Threat Report Portugal Q1 2020

Did H&M spy on its German employees? Privacy watchdog opens an investigation

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Steelcase office furniture giant hit by Ryuk ransomware attack

Croatia’s largest petrol station chain INA group hit by ransomware attack

Nefilim ransomware gang published Luxottica data on its leak site

Wawa card breach: 30 million card records for sale in the dark web

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

SEC Charges Shopin Founder with fraud over unregistered $42M ICO

440M records found online in unprotected database belonging to Estée Lauder

Lumber Liquidators hit by malware attack that took down its network

Payment card breach potentially impacts all locations of Wawa convenience store

Leicester City Football Club disclosed a card breach

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Neiman Marcus Agrees to Settlement in Data Breach Class Action

Researcher leaked a dataset of over 7,000,000 transactions scraped from the Venmo public API

California IT service provider Synoptek pays ransom after Sodinokibi attack

Maastricht University finally paid a 30 bitcoin ransom to crooks

Nedbank client data compromised in security breach at third-party provider

TA505 is expanding its operations

Croatia government agencies targeted with news SilentTrinity malware

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Russia-Linked TA505 targets financial institutions in a new malspam campaign

Nodersok malware delivery campaign relies on advanced techniques

Security Affairs newsletter Round 291

Threat Report Portugal: Q3 2020

Stay Connected