Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.” Pierluigi Paganini.

Passwords 100

Passwords Authentication Retail Education 100

Security Affairs

JANUARY 30, 2021

The company detected the security breach on January 6, 2021, and determined that the intrusion took place early this year, on January 4th, 2021. Then threat actors tricked UScellular employees working in retail stores into downloading and installing malicious software. ” reads the notice. ” – USCellular.

Data breaches 139

Data breaches Retail Passwords Access 139

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 ransomware attacks against Australian organizations in multiple industry sectors starting July 2021.

Ransomware 111

Ransomware Retail Security Manufacturing 111

Security Affairs

JANUARY 4, 2022

UScellular, one of the largest wireless carriers in the US, has disclosed a data breach after the hack suffered in December 2021. UScellular has disclosed a data breach after the attack that compromised the company’s billing system in December 2021. million customers in 426 markets in 23 states as of the second quarter of 2020.

Data breaches 122

Data breaches Retail Access Communications 122

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. The team has identified that Ecco left 50 indices exposed to the public, with over 60GB of data accessible since June 2021.

Retail 100

Retail Manufacturing Sales Phishing 100

Security Affairs

NOVEMBER 8, 2021

Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Update November 8, 2021. The Hive gang has been active since June 2021, it implements a Ransomware-as-a-Service model and employs a wide variety of tactics, techniques, and procedures (TTPs).

Ransomware 120

Ransomware Computer and Electronics Retail Sales 120

eSecurity Planet

JANUARY 21, 2021

LogicManager’s GRC solution has specific use cases across financial services, education, government, healthcare, retail, and technology industries, among others. To use an example of a functional GRC strategy in action, imagine a fictional retail business that sells vitamin supplements. See our in-depth look at RSA Archer. Back to top.

Compliance 67

Compliance Risk Government Retail 67

Security Affairs

JULY 4, 2021

Now new details about the attack are emerging, the Dutch Institute for Vulnerability Disclosure (DIVD) reported a zero-day vulnerability, tracked as CVE-2021-30116] and affecting Kaseya VSA servers, to the company. link] — Victor Gevers (@0xDUDE) July 4, 2021. “So ransomware can push itself to systems.

Ransomware 129

Ransomware Retail Sales Encryption 129

Data Matters

FEBRUARY 9, 2021

Released on February 1, the Financial Industry Regulatory Authority (FINRA) 2021 Report on its Examination and Risk Monitoring Program (Report) provides a roadmap for member firms to use to prepare for examinations and to review and assess compliance and supervisory procedures related to business practices, compliance, and operations.

Risk 84

Risk IT Compliance Marketing 84

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware 104

Ransomware Retail Libraries Encryption 104

Security Affairs

FEBRUARY 28, 2024

. “These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. Since September 2022, Moobot botnet was spotted targeting vulnerable D-Link routers.

Energy and Utilities 109

Energy and Utilities Military Government Phishing 109

Security Affairs

FEBRUARY 6, 2022

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange FBI issued a flash alert on Lockbit ransomware operation CISA orders federal agencies to fix actively exploited CVE-2022-21882 Windows flaw Over 500,000 people were impacted by a ransomware attack that hit Morley Ransomware attack hit Swissport International causing delays (..)

Security 92

Security Ransomware Phishing Retail 92

Security Affairs

JANUARY 15, 2022

“Hundreds of millions of payment card details have been stolen from online retailers, banks and payments companies before being sold for cryptocurrency on online marketplaces such as UniCC.” ” reads the analysis published by Elliptic Threat Intel. ” concludes the report.

Marketing 101

Marketing Retail Sales Ransomware 101

Security Affairs

JUNE 16, 2023

Kroll researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit software since 2021. One of Zellis’s customers, the British health and beauty retailer and pharmacy chain Boots also confirmed to have been impacted by the attack.

Ransomware 97

Ransomware Data breaches Retail Government 97

eSecurity Planet

JANUARY 28, 2022

Microsoft in November fended off a massive distributed denial-of-service (DDoS) attack in its Azure cloud that officials said was the largest ever recorded, the latest in a wave of record attacks that washed over the IT industry in the second half of 2021. As in the first six months, most attacks were short-lived.

IoT 136

IoT Cloud Cybersecurity Ransomware 136

Hunton Privacy

APRIL 27, 2021

As reported on the Hunton Retail Law Blog , on April 26, 2021, the U.S. 19-4310, 2021 WL 1603808 (2d Cir. Court of Appeals for the Second Circuit affirmed the dismissal on Article III standing grounds of a data breach class action predicated on an alleged increased risk of identity theft. McMorris v.

Data breaches 88

Data breaches Risk Retail Education 88

Security Affairs

JUNE 10, 2021

On June 10th, during the Digital Risk Summit 2021 online conference ( Amsterdam ), Group-IB presented its research on various fraudulent machinations, obtained thanks to neural networks and ML-based scorings of the Group-IB Digital Risk Protection System. Classiscam threat actors alone were found to defraud users by $ 7.75

Phishing 107

Phishing Retail Insurance Risk 107

Security Affairs

NOVEMBER 21, 2021

18deb9u1) #1 SMP Debian 4.9.272-2 (2021-07-19). The security firm shared its findings with law enforcement authorities. The post Researchers were able to access the payment portal of the Conti gang appeared first on Security Affairs. and 217.12.204.135. Linux version 4.9.0-16-amd64 16-amd64 (Debian 6.3.0-18deb9u1)

Access 96

Access Ransomware Retail Data breaches 96

The Security Ledger

FEBRUARY 26, 2021

Here’s the deal with the information security industry in the United States: our country doesn’t have nearly the number of information security professionals that it needs. According to an estimate from Cybersecurity Ventures, the shortage of US cyber security workers could reach 500,000 people in 2021.

Risk 52

Risk Information Security Cybersecurity Retail 52

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data. The last update of the service was registered May 1, 2022.

Phishing 86

Phishing Retail Financial Services Data breaches 86

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Security 53

Security Data breaches Ransomware Phishing 53

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware 106

Ransomware Encryption Government Retail 106

Security Affairs

SEPTEMBER 4, 2021

The attacks took space between late June and late July 2021, experts noticed that the infection process stops when detecting Russian, Ukrainian, or several other Eastern European languages. “The specified targeting of the Clearmind domain fits well with FIN7’s preferred modus operandi. ” reads the analysis published by Anomali.

Retail 129

Retail Sales Phishing IT 129

Security Affairs

NOVEMBER 25, 2022

“The users were able to impersonate an infinite number of entities (such as banks, retail companies and government institutions) for financial gain and substantial losses to victims.” The investigation, dubbed Operation Elaborate, was launched in October 2021 at the request of the UK authorities.

Retail 102

Retail Passwords Government Access 102

Security Affairs

NOVEMBER 25, 2021

“It is anticipated this number could increase during the 2021 holiday season due to rumors of merchandise shortages and the ongoing pandemic.” Be wary of online retailers who use a free email service instead of a company email address. Only purchase items from official, encryption-using websites.

e-Delivery 133

e-Delivery Passwords Retail Phishing 133

Security Affairs

OCTOBER 23, 2022

Multiple supply chains potentially impacted Bulgaria hit by a cyber attack originating from Russia Interpol arrested 75 members of the cybercrime ring Black Axe 45,654 VMware ESXi servers reached End of Life on Oct.

Security 74

Security Data breaches Ransomware Retail 74

Security Affairs

APRIL 26, 2021

The attackers hit companies in North America and threat actors exploited the ProxyLogon Microsoft Exchange flaws ( CVE-2021-27065 and CVE-2021-26858 ) to deliver malware in their networks. Experts from the Cybereason Nocturnus Team have investigated multiple incidents involving the Prometei Botnet.

Mining 75

Mining Retail Insurance Manufacturing 75

IT Governance

JANUARY 9, 2023

IT Governance discovered 1,063 security incidents in 2022, which accounted for 480,014,323 breached records. decrease in security incidents compared to 2021 (1,243). Other significant contributors to 2022’s total were the technology (115), education (95), professional services (63) and retail (62) sectors.

Data breaches 126

Data breaches Ransomware Government Passwords 126

Security Affairs

FEBRUARY 10, 2022

In this way they could operate in online banking and access bank accounts to empty them after receiving security confirmation messages from the banks.” Set strict security protocols enabling employees to effectively verify customer credentials before changing their numbers to a new device. Pierluigi Paganini.

Passwords 113

Passwords Authentication Retail Access 113

Security Affairs

OCTOBER 3, 2021

Experts pointed out that in the period between January and August 2021, the number of observed Ursnif campaigns impacting Italian organizations was treated that the total number of Ursnif campaigns targeting Italy in all of 2020. ” reads the analysis published by Proofpoint. Banca Sella UniCredit Group. ” concludes the report.

Retail 97

Retail Phishing Cybersecurity Risk 97

Security Affairs

JULY 21, 2021

July 19, 2021 – The actor having the alias “ bl4ckt0r ” has published TicketClub Italy database with over 340,957 users for sale and released several meaningful data dumps which may confirm the breach. The platform lists coupons in multiple categories including health, travel, food, services, events.

Data breaches 106

Data breaches Sales Retail Phishing 106

IT Governance

NOVEMBER 23, 2023

2019 (Q2–Q4) 2020 (Q2–Q4) 2021 (Q2–Q4) 2022 (Q2–Q4) Data breaches 855 752 (-12%) 630 (-16%) 648 (+3%) Cyber attacks 143 245 (+71%) 230 (-6%) 285 (+23%) Note 1: The ICO data set only provides the numbers for Q2 2019 until Q4 2022. Note 2: The percentages in brackets indicate the % change compared to the previous year. million (about £4.70

Risk 104

Risk Data breaches Authentication Financial Services 104

Krebs on Security

JULY 25, 2023

In a report released July 12, researchers at Lumen’s Black Lotus Labs called the AVrecon botnet “one of the largest botnets targeting small-office/home-office (SOHO) routers seen in recent history,” and a crime machine that has largely evaded public attention since first being spotted in mid-2021.

Analytics 211

Analytics Passwords Systems administration Retail 211

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Security 98

Security Data breaches Ransomware Retail 98

Security Affairs

OCTOBER 16, 2021

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. The MirrorBlast campaign is similar to another activity in April 2021, the attack chain is compatible with tactics, techniques, and procedures commonly associated with the TA505 group.

Retail 118

Retail Ransomware Security IT 118

Hunton Privacy

MAY 20, 2021

On May 18, 2021, New York Attorney General (“AG”) Letitia James announced a settlement agreement with Filters Fast LLC (“Filters Fast”) over a data breach that compromised personal information of approximately 324,000 consumers nationwide, including over 16,500 New York state residents.

Data breaches 78

Data breaches Retail Security IT 78

IT Governance

JUNE 8, 2023

An Office for National Statistics report revealed that UK organisations have experienced a 57% increase in “consumer and retail fraud” compared to pre-pandemic levels. The UK Government’s Cyber Security Breaches Survey 2022 revealed that 83% of organisations that suffered a cyber attack in the past year said that it was caused by phishing.

Phishing 111

Phishing Data breaches Communications Government 111