Magecart Cybercrime Groups Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

Groups 185

Magecart Cybercrime Groups Mass Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

Groups 233

The Radisson Hotel Group has suffered a data breach

Security Affairs

The hotel chain Radisson Hotel Group suffered a security breach that exposed personal information of the members of its loyalty scheme. The incident has happened on September 11, but the IT staff at the Radisson Hotel Group identified it only on October first.

'Rex Mundi' Hacker Extortion Group: Busted

Data Breach Today

Seven Gang Members Arrested in France, Eighth Busted in Thailand, Police Say Cyber extortion group Rex Mundi has been shut down following the arrest of seven suspects in France and a French national in Thailand, police say.

Groups 156

Magecart Group Ups Ante: Now Goes After Admin Credentials

Threatpost

The group's skimmer has added some capabilities that steals credentials from admins. Uncategorized Vulnerabilities Web Security admin credentials data breach digital skimmer e-commerce group 11 magecart Magecart group Skimmer VisionDirect VisionDirect data breach

Noose Tightens Around Dark Overlord Hacking Group

Data Breach Today

Serbia Makes Arrest; UK Close to Sentencing Another The noose appears to be tightening around the Dark Overlord, a group of international hackers who have stolen and held for ransom sensitive information from dozens of companies, healthcare organizations and U.S.

Groups 143

Symantec: 'Orangeworm' Group Hits Healthcare Organizations

Data Breach Today

Europe and Asia are getting hit with a backdoor that comes from a long-observed group, which Symantec calls Orangeworm. Custom Backdoor Lands on X-Ray and MRI Machines Large healthcare companies in the U.S.,

Groups 137

North Korea-linked group Lazarus targets Latin American banks

Security Affairs

According to security reearchers at Trend Micro, the North Korea-linked APT group Lazarus recently targeted banks in Latin America. The North Korea-linked APT group Lazarus recently targeted banks in Latin America, Trend Micro experts reported.

GreyEnergy cyberespionage group targets Poland and Ukraine

Security Affairs

Security researchers from ESET published a detailed analysis of a recently discovered cyber espionage group tracked as GreyEnergy. Experts from ESET speculate the BlackEnergy threat actor evolved into two separate APT groups, namely TeleBots and GreyEnergy.

Iowa Health Group Data Breach Hits 1.4 Million Patients

Data Breach Today

UnityPoint Health Says Hackers' Likely Goal Was Business Email Compromise Fraud A large Midwestern health network says a successful phishing campaign exposed a raft of personal and medical data stored in its email systems. The count of affected victims numbers 1.4

Groups 186

EU Mass Surveillance Alive and Well, Privacy Groups Warn

Data Breach Today

Groups 150

Group-IB UncoversAPT- attacks on Banks: The Sound of Silence

Security Affairs

Researchers at security firm Group-IB have exposed the attacks carried out by the Silence cybercriminal group, providing details on its tactics and tools. Experts at security firm Group-IB have exposed the attacks committed by Silence cybercriminal group.

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

The popular US whistleblower Edward Snowden has reported the abuse of surveillance made by many governments, he blamed the Israeli company NSO Group for developing and selling surveillance software to Saudi Arabia. Speaking during a conference in Tel Aviv on Wednesday, Snowden explained that the spy software developed by NSO Group enabled the murder of dissident journalist Jamal Khashoggi, at a conference in Tel Aviv on Wednesday. Security Affairs – NSO Group, Khashoggi).

Magecart Threat Group Racks Up More Hack Victims

Threatpost

The threat group has racked up a list of victims including Feedify, Groopdealz and British Airways. Uncategorized breach British Airways digital card skimmer Feedify hack magecart Magecart group

Improving engineer productivity at SMS group with OpenText Exceed TurboX

OpenText Information Management

As part of a global workforce of 13,500 employees, SMS group engineers perform countless complex calculations and simulations when designing and constructing solutions for clients.

Magecart Group Targets Shopper Approved in Latest Attack

Threatpost

Malware Web Security data breach magecart Magecart group shopper approved Skimmer ticketmasterThe breach also impacted hundreds of Shopper Approved's customers.

RiskIQ: British Airways Breach Ties to Cybercrime Group

Data Breach Today

Magecart Gang Tweaked Script on BA's Server to Scrape Card Data, Researchers Say The British Airways breach, in which up to 380,000 website and mobile users' payment card details were stolen, traces to card-scraping code injected into a script on the airline's website by the cybercrime group called Magecart, says security firm RiskIQ

Groups 100

Recent Andariel Group ActiveX Attacks Point to Future Targets

Threatpost

Changes in the group's script may indicate that the hackers may start using attack vectors other than ActiveX. Government Hacks ActiveX ActiveX vulnerability andariel group apt Code Injection Lazarus Group North Korea South Korea zero day

New Threat Group Conducts Malwareless Cyber Espionage

Dark Reading

Gallmaker group is relying exclusively on legitimate tools and living-off-the-land tactics to make detection very difficult

Public Google Groups Leaking Sensitive Data at Thousands of Orgs

Threatpost

Cloud Security Privacy Web Security exposed data google groups misconfiguration public settings sensitive informationThe exposed information includes accounts payable and invoice data, customer support emails, password-recovery mails, links to employee manuals, staffing schedules and other internal resources.

Cybercrime Groups and Nation-State Attackers Blur Together

Data Breach Today

North Korean Hackers are 'Rational Actors,' Ex-Intelligence Chief Warns "This is not a crazy state; this is a rational state pursuing rational objectives."

Groups 137

Report: Small, Stealthy Groups Behind Worst Cybercrimes

The Security Ledger

A small group of cybercriminals are responsible for the most damaging cyberattacks--often with the help of state sponsorship.

MoneyTaker hacking group stole 1 million US dollars from Russian PIR Bank

Security Affairs

The cybersecurity firm Group-IB is involved in the incident response on an attack on the Russian PIR Bank conducted by MoneyTaker hacking group. The bank hired Group-IB in order to respond to the incident and limit the damages. ” states Group-IB.

Cyber espionage group used CVE-2018-8589 Windows Zero-Day in Middle East Attacks

Security Affairs

2018 Patch Tuesday has been exploited by at least one APT group in attacks in the Middle East. Kaspersky did not explicitly attribute the attack to a specific threat actor but pointed out that the CVE-2018-8589 exploit code is being used by at least one cyber espionage APT group.

New Gallmaker APT group eschews malware in cyber espionage campaigns

Security Affairs

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. A new cyber espionage group tracked as Gallmaker appeared in the threat landscape.

Symantec Uncovers North Korean Group's ATM Attack Malware

Dark Reading

Lazarus Group has been using FastCash Trojan on obsolete AIX servers to empty tens of millions of dollars from ATMs

Leafminer cyber espionage group targets Middle East

Security Affairs

Hackers belonging an Iran-linked APT group tracked as ‘Leafminer’ have targeted government and various organizations in the Middle East. An Iran-linked APT group tracked as ‘Leafminer’ has targeted government and businesses in the Middle.

Magecart Group Pinned in Recent British Airways Breach

Threatpost

The Magecart Group has been blamed for the British Airways breach that compromised 380k payment cards. Breach Web Security British Airways data breach Magecart group script injection Ticketmaster breach

Groups find IT essential in making the shift to value

Information Management Resources

Value-based care Group practices Healthcare analytics Health outcomes EHR HITMultispecialty organizations such as Crystal Run Healthcare, the Carle Foundation and Marshfield Clinic are using technology ranging from care management to analytics to improve care.

Perficient Detroit Hosts April Atlassian User Group

Perficient Data & Analytics

For those in the Detroit area, the Perficient office in Livonia is hosting the SouthEast Michigan Atlassian User Group (AUG) on April 24th. News Atlassian AUG confluence jira Perficient reporting user groupsThe SouthEast Michigan AUG meets the last Tuesday of every other month for the 2018 year.

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

Group-IB has detected massive campaigns targeting Russian financial institutions posing as the Central Bank of Russia. Group-IB experts have discovered that the attack on 15 November could have been carried out by the hacker group Silence , and the one on 23 October by MoneyTaker. In the morning of 15 November, Group-IB detected a malicious mass email campaign sent to Russian banks from a fake email address purporting to belong to the Central Bank of Russia (CBR).

APT28 group return to covert intelligence gathering ops in Europe and South America.

Security Affairs

Experts from Symantec collected evidence that APT28 group returns to covert intelligence gathering operations in Europe and South America. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Cobalt Group Targets Banks in Eastern Europe with Double-Threat Tactic

Threatpost

Hacks Malware Web Security Banking campaign Carbanak cobalt group double threat Eastern Europe Financial russia Spear Phishing two c2 servers two payloadsThe campaign uses double infection points and two command-and-control servers.

Russia-linked APT group DustSquad targets diplomatic entities in Central Asia

Security Affairs

Kaspersky experts published a detailed analysis of the attacks conducted by the Russian-linked cyber espionage group DustSquad. The group has been active since at least 2015, ESET researchers presented their findings at the Virus Bulletin conference.

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 About the author Group-IB.

A Breach, or Just a Forced Password Reset?

Krebs on Security

Whether online merchants are willing to adopt such preemptive approaches is another matter, said Julie Conroy , research director with the Aite Group , a market analyst firm. A Little Sunshine Aite Group auth0 Citrix HaveIBeenPwned.com Jamie Buranich Julie Conroy Okta ShareFile Troy Hunt

Honda, Universal Music Group Expose Sensitive Data in Misconfig Blunders

Threatpost

Cloud Security Privacy apache airflow AWS cloud storage bucket connect app data breach Honda leak misconfiguration third party universal music groupThe Honda mistake affects 50,000 users of the Honda Connect App, while UMG exposed corporate keys to the kingdom.

Despite Ringeader’s Arrest, Cobalt Group Still Active

Threatpost

Hacks Malware arrest ATM jackpotting Banking Carbanak cobalt group financial sector phishing campaign ringleaderThe threat actors behind widespread attacks on banks and ATM jackpotting campaigns in Russia and Europe resurfaced in may, attacking banks.

New Hacker Group Behind 'DNSpionage' Attacks in Middle East

Dark Reading

Motives are not fully clear, though data exfiltration is one possibility, Cisco Talos says

Getting to Know Magecart: An Inside Look at 7 Groups

Dark Reading

A new report spills the details on Magecart, the criminal groups driving it, and ongoing attacks targeting low- and high-profile victims

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. Hong Kong, 16.11.2018 – Group-IB, an international company that specializes in preventing cyber attacks, presented the findings of its latest Hi-Tech Crime Trends 2018 report at the FinTech Security Conference in Hong Kong organized by Binary Solutions Limited in partnership with Group-IB. Group-IB in Asia.

New criminal hacking group targets healthcare organisations

IT Governance

Industry researchers have identified a new criminal hacking group targeting healthcare organisations in the US, EU (including the UK) and the Middle East.

Fin7: The Inner Workings of a Billion-Dollar Hacking Group

WIRED Threat Level

The Justice Department announced the arrest of three members of notorious cybercrime group Fin7—and detailed some of their methods in the process. Security