2021 and Retail - Information Management Today

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Security Affairs

JANUARY 1, 2024

The Cactus ransomware group claims to have hacked Coop, one of the largest retail and grocery providers in Sweden. Coop is one of the largest retail and grocery providers in Sweden, with approximately 800 stores across the country. The stores are co-owned by 3.5 million members in 29 consumer associations.

Retail

Retail Ransomware Encryption Access

Threat Report Portugal: Q2 2021

Security Affairs

JULY 22, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from April to June, Q2, of 2021. 0xSI_f33d is part of the official VirusTotal ingestors since July 2021 allowing the community to verify threats worldwide provided by this feed. Phishing and Malware Q2 2021.

Phishing

Phishing Data collection Retail Security awareness

American retailer Guess discloses data breach after ransomware attack

Security Affairs

JULY 13, 2021

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. “The investigation determined that there was unauthorized access to certain Guess systems between February 2, 2021 and February 23, 2021. Pierluigi Paganini.

Retail

Retail Data breaches Ransomware Access

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Retail giant Costco discloses data breach, payment card data exposed

Security Affairs

NOVEMBER 12, 2021

Retail giant Costco Wholesale Corporation notified its customers of a data breach that might have exposed their payment card information. The retail giant has 737 membership-only retail stores across the U.S., it is the fifth-largest retailer in the world and the 10th-largest corporation in the country by total revenue.

Retail

Retail Data breaches Security IT

Threat Report Portugal: Q3 2021

Security Affairs

NOVEMBER 14, 2021

The Threat Report Portugal: Q3 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q3, of 2021. 0xSI_f33d is part of the official VirusTotal ingestors since July 2021 allowing the community to verify threats worldwide provided by this feed. Phishing and Malware Q3 2021.

Phishing

Phishing e-Delivery Data collection Retail

Threat Report Portugal: Q1 2021

Security Affairs

MAY 2, 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021. Threat Report Portugal Q1 2021: Phishing and malware by numbers. Phishing and Malware Q1 2021. In terms of malware, the Javali trojan banker was spotlighted in Q1 2021.

Phishing

Phishing Data collection Retail Security awareness

Threat Report Portugal: Q4 2021

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. 0xSI_f33d is part of the official VirusTotal ingestors since July 2021 allowing the community to verify threats worldwide provided by this feed. Phishing and Malware Q4 2021.

e-Delivery

e-Delivery Phishing Data collection Retail

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

Blue Yonder serves a variety of industries, including retail, manufacturing, and distribution, and is known for helping organizations streamline their operations and enhance customer satisfaction.

Ransomware

Ransomware Retail Manufacturing Cloud

UScellular data breach: attackers ported customer phone numbers

Security Affairs

JANUARY 30, 2021

The company detected the security breach on January 6, 2021, and determined that the intrusion took place early this year, on January 4th, 2021. Then threat actors tricked UScellular employees working in retail stores into downloading and installing malicious software. ” reads the USCellular data breach notification.

Data breaches

Data breaches Retail Passwords Access

Americans lost $770 million from social media fraud in 2021, FTC reports

Security Affairs

JANUARY 30, 2022

A report from the US Federal Trade Commission (FTC) revealed that in 2021 Americans lost $770 million from social media frauds. The US Federal Trade Commission (FTC) revealed that in 2021 Americans lost $770 million from social media frauds. In fact, 45% of reports of money lost to social media scams in 2021 were about online shopping.”

Retail

Retail Marketing Privacy IT

Clop ransomware gang was testing MOVEit Transfer bug since 2021

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. ” reads the analysis published by the security firm.

Ransomware

Ransomware Retail Access Personal data

UScellular discloses the second data breach in a year

Security Affairs

JANUARY 4, 2022

UScellular, one of the largest wireless carriers in the US, has disclosed a data breach after the hack suffered in December 2021. UScellular has disclosed a data breach after the attack that compromised the company’s billing system in December 2021. million customers in 426 markets in 23 states as of the second quarter of 2020.

Data breaches

Data breaches Retail Access Communications

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

ransomware attacks against Australian organizations starting July 2021. ransomware attacks against Australian organizations in multiple industry sectors starting July 2021. The Australian agency also published 2021-006: ACSC Ransomware Profile – Lockbit 2.0 ransomware. in Australia since 2020. ” states the advisory.

Ransomware

Ransomware Retail Security Manufacturing

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

In June 2021, the US Department of Justice announced the seizure of the infrastructure of SlilPP. Between July 2016 and May 2021, Kavzharadze listed over 626,100 stolen login credentials on Slilpp and sold more than 297,300 of them. Kavzharadze pleaded guilty to conspiracy to commit bank and wire fraud on February 16, 2024.

Sales

Sales Retail Personal data Passwords

Ransomware attack disrupted store operations in the Netherlands and Germany

Security Affairs

NOVEMBER 8, 2021

Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Update November 8, 2021. The Hive gang has been active since June 2021, it implements a Ransomware-as-a-Service model and employs a wide variety of tactics, techniques, and procedures (TTPs).

Ransomware

Ransomware Computer and Electronics Retail Sales

Sugar Ransomware, a new RaaS in the threat landscape

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware

Ransomware Retail Libraries Encryption

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

The Last Watchdog

DECEMBER 9, 2021

In 2021 we witnessed the continuation of the seismic shift in how people work, a change that started at the beginning of the global pandemic. The acceleration of cloud, mobility, and security initiatives proved to be critical for organizations looking to weather the new threats and disruptions.

Cloud

Cloud IoT Cybersecurity Digital transformation

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

JUNE 10, 2021

On June 10th, during the Digital Risk Summit 2021 online conference ( Amsterdam ), Group-IB presented its research on various fraudulent machinations, obtained thanks to neural networks and ML-based scorings of the Group-IB Digital Risk Protection System. Classiscam threat actors alone were found to defraud users by $ 7.75

Phishing

Phishing Retail Insurance Risk

Why Retailers Are Turning to Biometrics

HID Global

OCTOBER 18, 2021

Why Retailers Are Turning to Biometrics. Mon, 10/18/2021 - 10:41. vfabbrizio.

Retail

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. The team has identified that Ecco left 50 indices exposed to the public, with over 60GB of data accessible since June 2021.

Retail

Retail Manufacturing Sales Phishing

Data breaches and cyber attacks quarterly review: Q3 2021

IT Governance

OCTOBER 26, 2021

Welcome to our third quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 266 security incidents between July and September 2021, which accounted for 185,721,284 breaches records. Download now.

Data breaches

Data breaches Retail Government Ransomware

Prominent Carding Marketplace UniCC announced it’s shutting down

Security Affairs

JANUARY 15, 2022

“Hundreds of millions of payment card details have been stolen from online retailers, banks and payments companies before being sold for cryptocurrency on online marketplaces such as UniCC.” ” reads the analysis published by Elliptic Threat Intel. ” concludes the report.

Marketing

Marketing Retail Sales Ransomware

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Security Affairs

SEPTEMBER 4, 2021

The attacks took space between late June and late July 2021, experts noticed that the infection process stops when detecting Russian, Ukrainian, or several other Eastern European languages. “The specified targeting of the Clearmind domain fits well with FIN7’s preferred modus operandi. ” reads the analysis published by Anomali.

Retail

Retail Sales Phishing IT

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. Since September 2022, Moobot botnet was spotted targeting vulnerable D-Link routers.

Energy and Utilities

Energy and Utilities Military Government Phishing

Security Affairs newsletter Round 352

Security Affairs

FEBRUARY 6, 2022

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange FBI issued a flash alert on Lockbit ransomware operation CISA orders federal agencies to fix actively exploited CVE-2022-21882 Windows flaw Over 500,000 people were impacted by a ransomware attack that hit Morley Ransomware attack hit Swissport International causing delays (..)

Security

Security Ransomware Phishing Retail

FBI warns of crooks targeting online shoppers during the holiday season

Security Affairs

NOVEMBER 25, 2021

“It is anticipated this number could increase during the 2021 holiday season due to rumors of merchandise shortages and the ongoing pandemic.” Be wary of online retailers who use a free email service instead of a company email address. Only purchase items from official, encryption-using websites.

e-Delivery

e-Delivery Passwords Retail Phishing

Researchers were able to access the payment portal of the Conti gang

Security Affairs

NOVEMBER 21, 2021

18deb9u1) #1 SMP Debian 4.9.272-2 (2021-07-19). The researchers were able to unmask the real IP address of Conti’s TOR hidden service and contirecovery.ws and 217.12.204.135. The latter is an IP address owned by Ukrainian web hosting company ITL LLC. Linux version 4.9.0-16-amd64 16-amd64 (Debian 6.3.0-18deb9u1) Pierluigi Paganini.

Access

Access Ransomware Retail Data breaches

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

CloudPassage’s 2021 AWS Cloud Security Report found that misconfiguration of cloud platforms (71 percent), exfiltration of sensitive data (59 percent), and insecure APIs (54 percent) are the top cloud security threats facing cybersecurity professionals. Read more: Best IAM Tools & Solutions for 2021. Train your staff.

Cloud

Cloud Security Encryption Risk

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

Security Affairs

APRIL 26, 2021

The attackers hit companies in North America and threat actors exploited the ProxyLogon Microsoft Exchange flaws ( CVE-2021-27065 and CVE-2021-26858 ) to deliver malware in their networks. Experts from the Cybereason Nocturnus Team have investigated multiple incidents involving the Prometei Botnet.

Mining

Mining Retail Insurance Manufacturing

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware

Ransomware Encryption Government Retail

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

The DSIRF website states the provide services “to multinational corporations in the technology, retail, energy and financial sectors ” and that they have “ a set of highly sophisticated techniques in gathering and analyzing information. The group targets entities in Europe and Central America with a surveillance tool dubbed Subzero.

Authentication

Authentication Retail Passwords Security

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

Security Affairs

FEBRUARY 10, 2022

” The first SIM swapping attack attributed to this gang took place on March 2021, at the time Spanish police received two complaints about fraudulent transactions in different geographical locations in Spain. Authenticate calls from third party authorized retailers requesting. Follow me on Twitter: @securityaffairs and Facebook.

Passwords

Passwords Authentication Access Retail

Threat Report Portugal: Q4 2020

Security Affairs

JANUARY 26, 2021

Next, was Retail and Technology, as the most sectors affected in this season. Threat campaigns during Q1 2021 will be published on a daily basis into 0xSI_f33d , as well as additional incidents and investigations that are being documented and published on Segurança-Informatica.

Phishing

Phishing Retail Security awareness Data collection

TA544 group behind a spike in Ursnif malware campaigns targeting Italy

Security Affairs

OCTOBER 3, 2021

Experts pointed out that in the period between January and August 2021, the number of observed Ursnif campaigns impacting Italian organizations was treated that the total number of Ursnif campaigns targeting Italy in all of 2020. ” reads the analysis published by Proofpoint. Banca Sella UniCredit Group. ” concludes the report.

Retail

Retail Phishing Cybersecurity Risk

TicketClub Italy Database Offered in Dark Web

Security Affairs

JULY 21, 2021

July 19, 2021 – The actor having the alias “ bl4ckt0r ” has published TicketClub Italy database with over 340,957 users for sale and released several meaningful data dumps which may confirm the breach. The platform lists coupons in multiple categories including health, travel, food, services, events.

Data breaches

Data breaches Sales Retail Phishing

Hackers are sending receipts with anti-work messages to businesses’ printers

Security Affairs

DECEMBER 6, 2021

Imagine you are working your s**t retail job when this comes out of your register. GEbit (@Mage_Bit) November 25, 2021. ” reported METRO. R/antiwork pic.twitter.com/N6SAJ9ogq5 — M?GEbit ARE YOU BEING UNDERPAID? ” reads the message.

Retail

Retail Cybersecurity Security IT

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. The post List of data breaches and cyber attacks in June 2021 – 9.8 But don’t be fooled by that number – it comes from 106 incidents, which is roughly average for the year. discloses ransomware incident (unknown).

Data breaches

Data breaches Ransomware Computer and Electronics Retail

Listening to the Voice of Our Clients: Informing strategies to drive a shared value future in the retail, consumer and services industry

CGI

MARCH 31, 2021

Listening to the Voice of Our Clients: Informing strategies to drive a shared value future in the retail, consumer and services industry. In my previous blog, I talked about the pandemic accelerating the impetus for retail, consumer and services organizations to become truly digital. Wed, 03/31/2021 - 03:31.

Retail

Security Affairs newsletter Round 291

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Security

Security Data breaches Ransomware Retail

Hunton Publishes 2020 Retail Industry Year in Review

Hunton Privacy

FEBRUARY 2, 2021

This is an extraordinary and unprecedented time for the retail industry. Hunton Andrews Kurth’s 2020 Retail Industry Year in Review provides an in-depth analysis of the issues and challenges that retailers faced in the past year, and a look ahead at what they can expect in 2021.

Retail

Retail Privacy Cybersecurity Information Security

List of data breaches and cyber attacks in November 2021 – 223.6 million records breached

IT Governance

DECEMBER 1, 2021

With one month left in 2021, the annual total running total of compromised records is to just shy of 5 billion. The post List of data breaches and cyber attacks in November 2021 – 223.6 In November, we discovered 81 publicly disclosed cyber security incidents, accounting for 223,615,390 breached records. Financial information.

Data breaches

Data breaches Ransomware Computer and Electronics Healthcare

Oil and gas giant Shell is another victim of Clop ransomware attacks

Security Affairs

JUNE 16, 2023

Kroll researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit software since 2021. One of Zellis’s customers, the British health and beauty retailer and pharmacy chain Boots also confirmed to have been impacted by the attack.

Ransomware

Ransomware Data breaches Retail Government

AI in retail and the rise of the purpose-driven consumer

IBM Big Data Hub

FEBRUARY 21, 2022

That retail has experienced extreme disruption in recent years is beyond questioning. Even before Covid turned the world on its head, headlines about the so-called “retail apocalypse” were near-ubiquitous in the media. Retail isn’t just big, it’s huge — the National Retail Federation expects sales to grow by as much as 13.5%

Retail

Retail Digital transformation Sales Marketing

Data breaches and cyber attacks quarterly review: Q2 2021

IT Governance

JULY 13, 2021

Welcome to our second quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 377 security incidents between April and June 2021, which accounted for 1,224,539,395 breached records. This represents a 7.4%

Data breaches

Data breaches Retail Ransomware Government

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Threat Report Portugal: Q2 2021

Webinars

Trending Sources

American retailer Guess discloses data breach after ransomware attack

Webinars

Retail giant Costco discloses data breach, payment card data exposed

Threat Report Portugal: Q3 2021

Threat Report Portugal: Q1 2021

Threat Report Portugal: Q4 2021

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

UScellular data breach: attackers ported customer phone numbers

Americans lost $770 million from social media fraud in 2021, FTC reports

Clop ransomware gang was testing MOVEit Transfer bug since 2021

UScellular discloses the second data breach in a year

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Russian national sentenced to 40 months for selling stolen data on the dark web

Ransomware attack disrupted store operations in the Netherlands and Germany

Sugar Ransomware, a new RaaS in the threat landscape

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

Global Scamdemic: Scams Become Number One Online Crime

Why Retailers Are Turning to Biometrics

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

Data breaches and cyber attacks quarterly review: Q3 2021

Prominent Carding Marketplace UniCC announced it’s shutting down

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs newsletter Round 352

FBI warns of crooks targeting online shoppers during the holiday season

Researchers were able to access the payment portal of the Conti gang

Top 12 Cloud Security Best Practices for 2021

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

PYSA ransomware gang is the most active group in November

European firm DSIRF behind the attacks with Subzero surveillance malware

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

Threat Report Portugal: Q4 2020

TA544 group behind a spike in Ursnif malware campaigns targeting Italy

TicketClub Italy Database Offered in Dark Web

Hackers are sending receipts with anti-work messages to businesses’ printers

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

Listening to the Voice of Our Clients: Informing strategies to drive a shared value future in the retail, consumer and services industry

Security Affairs newsletter Round 291

Hunton Publishes 2020 Retail Industry Year in Review

List of data breaches and cyber attacks in November 2021 – 223.6 million records breached

Oil and gas giant Shell is another victim of Clop ransomware attacks

AI in retail and the rise of the purpose-driven consumer

Data breaches and cyber attacks quarterly review: Q2 2021

Stay Connected