17th June 2017 The Buckle Inc., a clothier that operates more than 450 stores in 44 U.S. states, disclosed Friday that its retail locations were hit by malicious software designed to steal customer credit card data. The disclosure came hours after KrebsOnSecurity contacted the company regarding reports from sources in the financial sector about… Continue reading Credit Card Breach at Buckle Stores
Cyber News Rundown: Edition 6/16/17
The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask. New Mobile Phishing Attacks are Using URL Padding In an attempt to trick… Continue reading Cyber News Rundown: Edition 6/16/17
Windows support scams: Here’s how we’re taking down fraud kingpins, says Microsoft
Microsoft is fighting tech-support scammers’ automation with artificial intelligence from its research labs. Tech-support scammers are harnessing automation to target victims in certain states more than others. Image: Microsoft Research By Liam Tung | June 16, 2017 Faced with skyrocketing complaints about tech-support… Continue reading Windows support scams: Here’s how we’re taking down fraud kingpins, says Microsoft
Dumb British hacker used his own internet to steal data from US Department of Defense
A hacker has pleaded guilty to stealing hundreds of user accounts from a US military satellite network. By Mary-Ann Russon June 16, 2017 A British hacker has pleaded guilty to stealing the usernames, email addresses and ranks of over 800 user accounts from a US military satellite communications… Continue reading Dumb British hacker used his own internet to steal data from US Department of Defense
TrickBot Targets PayPal, Salesforce.com
16th June 2017 By Tara Seals The financial trojan TrickBot, the successor to Dyre, has expanded its targets beyond banks to include PayPal, the US-based payment processing giant, and two customer relationship management (CRM) SaaS providers. The CRM targets were Salesforce.com and an auto sales CRM developed by Reynolds & Reynolds in the… Continue reading TrickBot Targets PayPal, Salesforce.com
Google Play is fighting an uphill battle against Android adware
Google hasn’t yet removed all of the apps, which have as many as 6 million downloads. Dan Goodin – 6/16/2017 Google’s official Play marketplace is waging an uphill battle against Android apps that display an unending stream of popup ads even when users try to… Continue reading Google Play is fighting an uphill battle against Android adware
Airbnb – the heartache of fake holiday scams
15th June 2017 By Lisa Vaas Here’s another Airbnb scam story, straight from the balmy, beach town of Esperance in Western Australia: As ABC News tells it, last weekend, a family of “some very nice people” – also known as utter strangers – showed up on the door step of Carmel… Continue reading Airbnb – the heartache of fake holiday scams
World’s Largest Bitcoin Exchange Bitfinex Crippled by DDoS
15th June 2017 By Phil Muncaster Bitfinex, the world’s largest US dollar-based Bitcoin exchange, is still suffering from the effects of a DDoS attack on its systems earlier this week, rendering IOTA deposits unavailable for users. The exchange first tweeted it was under attack on Tuesday, just a day after it launched trading… Continue reading World’s Largest Bitcoin Exchange Bitfinex Crippled by DDoS
Banks could be stung for €5bn under GDPR, screams latest report on industry readiness
Firm peddling security solutions says poor breach reporting will ‘make you look like a fool’ 15 Jun 2017 By Rebecca Hill European banks could face fines totalling €4.7bn in the three years after General Data Protection Regulation comes into force, according to a… Continue reading Banks could be stung for €5bn under GDPR, screams latest report on industry readiness
Login-stealing phishing sites conceal their evil with lots of hyphens in URL
Compromised domains target Android users with fake login pages for cloud services. Sean Gallagher – 6/15/2017 Researchers at PhishLabs recently spotted a trend emerging in malicious websites presented to customers: mobile-focused phishing attacks that attempt to conceal the true domain they were served from by padding the subdomain address with enough hyphens to push the… Continue reading Login-stealing phishing sites conceal their evil with lots of hyphens in URL