2014, Retail and Security - Information Management Today

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Security Affairs

NOVEMBER 25, 2020

Retail giant Home Depot has agreed to a $17.5 million settlement in a multi-state investigation of the data breach that the company suffered in 2014. The US largest home improvement retailer giant Home Depot agrees to $17.5 million settlement over the 2014 data breach. The post Retail giant Home Depot agrees to a $17.5

Retail

Retail Data breaches Information Security Security awareness

Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Data Breach Today

NOVEMBER 25, 2020

Home Supply Retailer Must Also Implement Several Cybersecurity Protocols The Home Depot reached a $17.5 million settlement in a class-action lawsuit stemming from a 2014 data breach that compromised the payment card data of 40 million of the retailer's customers.

Retail

Retail Data breaches Cybersecurity Security

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Security Affairs

SEPTEMBER 19, 2018

Magecart hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. The Magecart cybercrime group is back, this time the hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. Pierluigi Paganini.

Retail

Retail Computer and Electronics Data breaches Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs

Security Affairs

DECEMBER 17, 2019

LightInTheBox is a Chinese online retailer trading on the New York Stock Exchange, most of its customers are in North America and Europe. “Led by cybersecurity analysts Noam Rotem and Ran Locar, vpnMentor’s research team discovered a leak in a database belonging to the online retailer LightInTheBox.” concludes the post.

Retail

Retail e-Discovery Data breaches Archiving

Staples discloses data breach exposing customer order data

Security Affairs

SEPTEMBER 14, 2020

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. Staples, the office retail giant, disclosed a data breach, it notified its customers that their order data have been accessed by threat actors without authorization. Pierluigi Paganini.

Data breaches

Data breaches Retail Access Security

Nedbank client data compromised in security breach at third-party provider

Security Affairs

FEBRUARY 14, 2020

Nedbank bank announced on Thursday that a security breach at a third-party supplier has compromised the details of as many as 1.7 Nedbank bank disclosed on Thursday a security breach at a third-party supplier that has compromised the details of as many as 1.7 ” reads a security notice published by the bank.

Security

Security Marketing Retail Communications

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Manufacturing Ransomware Security

Bodybuilding.com forces password reset after a security breach

Security Affairs

APRIL 23, 2019

Bad news for fitness and bodybuilding passionates, the popular online retailer Bodybuilding.com announced that hackers have broken into its systems. The popular online retailer website Bodybuilding.com announced last week that hackers have broken into its systems. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Security Retail Personal data

Experts report a rampant growth in the number of malicious, lookalike domains

Security Affairs

NOVEMBER 18, 2019

Cyber security firm Venafi announced it has uncovered lookalike domains with valid TLS certificates that appear to target major retailers. is a private cybersecurity company that develops software to secure and protect cryptographic keys and digital certificates. retailers with over 49,500 typosquatted domains.

Retail

Retail Encryption Phishing Authentication

Accessories giant Claire’s is the victim of a Magecart attack, credit card data exposed

Security Affairs

JUNE 15, 2020

based jewelry and accessory giant Claire’s, and its subsidiary Icing, the security breach took place in April and attackers may have gained access to customer’s credit cards. “Claire’s, a fashion retailer, closed all of its 3000 brick & mortar stores worldwide on March 20th. Pierluigi Paganini.

Retail

Retail Access Cybersecurity Security

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

The US-based children’s clothing maker and online retailer Hanna Andersson discloses a data breach, attackers planted an e-skimmer on its e-commerce platform. Security firms have monitored the activities of a dozen groups at least since 2010. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Retail Cloud Insurance

Toymaker giant Mattel disclosed a ransomware attack

Security Affairs

NOVEMBER 4, 2020

The company filed a 10-Q form with the Securities and Exchange Commission (SEC), Mattel disclosed that it suffered a ransomware attack on July 28th, 2020. “A forensic investigation of the incident has concluded, and no exfiltration of any sensitive business data or retail customer, supplier, consumer, or employee data was identified.

Ransomware

Ransomware Retail Encryption IT

Security Affairs newsletter Round 291

Security Affairs

NOVEMBER 29, 2020

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 291 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security

Security Data breaches Ransomware Retail

Hackers stole credit card data from JM Bullion online bullion dealer

Security Affairs

NOVEMBER 2, 2020

JM Bullion, the online retailer of products made of precious metals (i.e. JM Bullion has sent a ‘ Notice of Data Security Incident ‘ to its customers, the security breach took place on February 18, 2020, when its staff discovered a malicious script on its website. Pierluigi Paganini.

Data breaches

Data breaches Retail Security IT

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Krebs on Security

OCTOBER 26, 2021

federal investigators today raided the Florida offices of PAX Technology , a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. based WOKV.com reported that agents with the FBI and Department of Homeland Security (DHS) had raided a local PAX Technology warehouse. organizations.

Sales

Sales Retail Computer and Electronics Risk

Croatia’s largest petrol station chain INA group hit by ransomware attack

Security Affairs

FEBRUARY 20, 2020

” reads a security breach notice published by the company on its website. “Market supply is secure. Fuel sales at our retail locations continue unhindered. All payments are secure, whether it is a cash payment, an INA card or a bank card. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Encryption Retail Sales

Report: Threat of Emotet and Ryuk

Security Affairs

JANUARY 31, 2020

Experts at cyber security firm Cypher conducted a study on Portuguese domains during 2019 and concluded that Emotet and Ryuk were the most active threats. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Retail Phishing Encryption

Decathlon Spain data leak exposed Spanish employees’ data & more

Security Affairs

FEBRUARY 25, 2020

Experts from vpnMentor have uncovered a leaking, active database containing over 123 million records belonging to the sporting goods retailer Decathlon Spain (and possibly Decathlon UK as well). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the post published by vpnMentor.

Archiving

Archiving Passwords Retail Education

SHEIN Data breach affected 6.42 million users

Security Affairs

SEPTEMBER 25, 2018

Another fashion retailer suffered a data breach, the victim is SHEIN that announces the security breach affected 6.42 The retailer hired a forensic cybersecurity firm as well as an international law firm to investigate the security breach. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Retail Passwords Cybersecurity

Key Ring digital wallet exposes data of 14 Million users in data leak

Security Affairs

APRIL 6, 2020

The images include scans of government-issued IDs, retail club membership and loyalty cards, NRA membership cards, gift cards, credit cards with all details exposed (including CVV), medical insurance cards, medical marijuana ID cards, and more. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail

Retail Encryption Insurance Passwords

Crooks claim to have stolen 20k customer records from Superdrug cosmetics retailer

Security Affairs

AUGUST 22, 2018

Hackers claim to have stolen the personal details of almost 20,000 Superdrug customers who shopped online at the cosmetics retailer. The British Superdrug is the last victim of a security breach, hackers claim to have stolen the personal details of almost 20,000 people who shopped online at the cosmetics retailer.

Retail

Retail Data breaches Passwords Access

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. Security experts from cyber-security firm Prevailion reported that TA505 has compromised more than 1,000 organizations. — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. We strongly recommend patching.

Authentication

Authentication Retail Passwords Security

Neiman Marcus discloses data breach, payment card data exposed

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. Exposed personal information includes names and contact information, usernames, passwords, and answers to security questions associated with online accounts. The security breach impacted 4.6

Data breaches

Data breaches Retail Passwords Access

MyPillow and Amerisleep are the latest victims of Magecart gangs

Security Affairs

MARCH 20, 2019

Security experts at riskIQ revealed today that another two organizations were victims of Magecart crime gang, the bedding retailers MyPillow and Amerisleep. Security experts at RiskIQ announced that the two bedding retailers MyPillow and Amerisleep were victims of the Magecart cybercrime gang. Pierluigi Paganini.

Retail

Retail Security IT

North Korean Lazarus APT stole credit card data from US and EU stores

Security Affairs

JULY 6, 2020

North Korea-linked Lazarus APT has been stealing payment card data from customers of large retailers in the U.S. Sansec researchers reported that North Korea-linked Lazarus APT group has been stealing payment card information from customers of large retailers in the U.S. and Europe for at least a year. and Europe for at least a year.

Retail

Retail Phishing Marketing IT

440M records found online in unprotected database belonging to Estée Lauder

Security Affairs

FEBRUARY 11, 2020

A security expert discovered that the Cosmetic firm Estée L auder exposed 440 million records online in a database that was left unsecured. The security expert Jeremiah Fowler discovered an unsecured database belonging to the Cosmetic firm Estée L auder that contained 440,336,852 records. ” concluded the post. Pierluigi Paganini.

Archiving

Archiving Retail Manufacturing Passwords

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Since at least 2014, experts at FireEye have observed the APT32 group targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture

Agriculture IT Retail Manufacturing

Freedom Mobile data breach impacts at least 15,000 customers

Security Affairs

MAY 9, 2019

Security researchers at vpnMentor discovered an unprotected database containing information belonging to Freedom Mobile customers. The database was secured on April 23. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .

Data breaches

Data breaches Retail Encryption Communications

Security Affairs newsletter Round 245

Security Affairs

DECEMBER 22, 2019

The best news of the week with Security Affairs. Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs. Negative opinion of Italy security committee Copasir on Huawei, ZTE 5G solutions. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Security

Security Ransomware Passwords Data breaches

Australia banned Huawei from 5G network due to security concerns

Security Affairs

AUGUST 25, 2018

Chinese-owned telecommunications firm Huawei has been banned from Australia’s 5G network due to security concerns. Has safely & securely delivered wireless technology in Aust for close to 15 yrs. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Huawei is a world leader in 5G.

Security

Security Military Manufacturing Retail

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Security Affairs

MARCH 30, 2020

One way to do this is NOT to click on promotional links in emails, and instead, Google your desired retailer and click the link from the Google results page. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Communications

Communications Retail Authentication Government

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Mandiant researchers highlighted an important with operations conducted by the TA505 cybercrime gang (aka Evil Corp ), which has been active since 2014 focusing on retail and banking sectors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, FIN11).

Ransomware

Ransomware IT Healthcare Phishing

Wawa card breach: 30 million card records for sale in the dark web

Security Affairs

JANUARY 29, 2020

In December 2019, Wawa convenience store chain disclosed a payment card breach, its security team discovered a PoS malware on its payment processing systems. Wawa operates more than 860 convenience retail stores, this breach is potentially one of the biggest card incidents in 2019. ” concludes Gemini. Pierluigi Paganini.

Sales

Sales Data breaches Retail Security

State attorneys general announced a $1.5 million settlement with Neiman Marcus

Security Affairs

JANUARY 9, 2019

million settlement with The Neiman Marcus Group LLC over a data breach suffered by the company in 2013 and disclosed earlier 2014. Early 2014, the high-end retailer confirmed a data breach, the incident happened a few weeks after the clamorous data breach at US giant retailer Target. billion in the Q4 2013. .

Data breaches

Data breaches Retail Personal data Sales

Maastricht University finally paid a 30 bitcoin ransom to crooks

Security Affairs

FEBRUARY 9, 2020

Extra security measures have been taken to protect (scientific) data. ” N ow all critical systems at the University are online and offline backups were secured by the company. According to security experts at Fox-IT, the ransomware attack is compatible with other attacks carried out by the TA505 cybercrime gang.

Ransomware

Ransomware Encryption Passwords Retail

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware IT Retail Manufacturing

Security Affairs newsletter Round 181 – News of the week

Security Affairs

SEPTEMBER 23, 2018

The best news of the week with Security Affairs. Magecart cybercrime group stole customers credit cards from Newegg electronics retailer. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Security Affairs – Newsletter ).

Security

Security Computer and Electronics Mining Data breaches

Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison

Security Affairs

SEPTEMBER 22, 2018

Scan4you service allows its customers to develop malicious codes that were used to steal millions of payment cards from retail stores across the world, it has been estimated that overall losses account for $20.5 ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. billion. . Pierluigi Paganini.

Retail

Retail IT Security

Ritz hotel diners were victims of a sophisticated scam

Security Affairs

AUGUST 16, 2020

To cash out the payment card data obtained, the scammers attempted to make purchases at the catalogue retailer Argos. The scammers told the client of the hotel that her payment card had been declined, and asked her for a second bank card, then they tried to make several transactions in excess of £1,000 at the catalogue retailer Argos.

Data breaches

Data breaches Retail Security IT

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. It is the largest office furniture manufacturer in the world.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

Leicester City Football Club disclosed a card breach

Security Affairs

JUNE 2, 2019

“Upon discovery of the breach, the security of our retail platform was immediately restored and appropriate measures were taken to ensure the security of all other online assets.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the statement issued by the company.

Retail

Retail Cybersecurity Security IT

Threat Report Portugal: Q2 2020

Security Affairs

AUGUST 14, 2020

This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way. Next, was Retail and Financing, as the most sectors affected in this season. Phishing and Malware Q2 2020. Threats by Sector.

Phishing

Phishing Data collection Retail Security awareness

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. In June, security experts from Symantec reported that at least 31 organizations in the United States have been targeted with the recently discovered WastedLocker ransomware.

Ransomware

Ransomware Retail Manufacturing Encryption

FBI warns US organizations of ProLock ransomware decryptor not working

Security Affairs

MAY 18, 2020

issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. The PwndLocker ransomware first appeared in the threat landscape by security researchers in late 2019, operators’ demands have ranged from $175,000 to more than $660,000 worth of Bitcoin.

Ransomware

Ransomware Retail Access Security

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Webinars

Trending Sources

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Webinars

Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs

Staples discloses data breach exposing customer order data

Nedbank client data compromised in security breach at third-party provider

Hackers hit Luxottica, production stopped at two Italian plants

Bodybuilding.com forces password reset after a security breach

Experts report a rampant growth in the number of malicious, lookalike domains

Accessories giant Claire’s is the victim of a Magecart attack, credit card data exposed

US-based children’s clothing maker Hanna Andersson discloses a data breach

Toymaker giant Mattel disclosed a ransomware attack

Security Affairs newsletter Round 291

Hackers stole credit card data from JM Bullion online bullion dealer

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Croatia’s largest petrol station chain INA group hit by ransomware attack

Report: Threat of Emotet and Ryuk

Decathlon Spain data leak exposed Spanish employees’ data & more

SHEIN Data breach affected 6.42 million users

Key Ring digital wallet exposes data of 14 Million users in data leak

Crooks claim to have stolen 20k customer records from Superdrug cosmetics retailer

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Neiman Marcus discloses data breach, payment card data exposed

MyPillow and Amerisleep are the latest victims of Magecart gangs

North Korean Lazarus APT stole credit card data from US and EU stores

440M records found online in unprotected database belonging to Estée Lauder

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Freedom Mobile data breach impacts at least 15,000 customers

Security Affairs newsletter Round 245

Australia banned Huawei from 5G network due to security concerns

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

FIN11 gang started deploying ransomware to monetize its operations

Wawa card breach: 30 million card records for sale in the dark web

State attorneys general announced a $1.5 million settlement with Neiman Marcus

Maastricht University finally paid a 30 bitcoin ransom to crooks

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs newsletter Round 181 – News of the week

Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison

Ritz hotel diners were victims of a sophisticated scam

Steelcase office furniture giant hit by Ryuk ransomware attack

Leicester City Football Club disclosed a card breach

Threat Report Portugal: Q2 2020

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

FBI warns US organizations of ProLock ransomware decryptor not working

Stay Connected