Analysis and Retail - Information Management Today

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Security Affairs

SEPTEMBER 19, 2018

Magecart hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. The Magecart cybercrime group is back, this time the hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. Pierluigi Paganini.

Retail

Retail Computer and Electronics Data breaches Security

Analysis: Why Regulators Got Tough With H&M

Data Breach Today

OCTOBER 9, 2020

The latest edition of the ISMG Security Report analyzes why clothing retailer H&M was hit with a hefty fine for violating the EU's General Data Protection Rule. Also featured: The coming of age of digital identities; deputy CSO at Mastercard on top priorities for 2021.

Retail

Retail Security

Analysis: Fat Face's Awkward Breach Notification

Data Breach Today

APRIL 2, 2021

The latest edition of the ISMG Security Report features an analysis of retailer Fat Face’s awkward "strictly private and confidential" data breach notification. Also featured: Discussions on the ethics of buying leaked data and the rise of central bank digital currencies.

Retail

Retail Data breaches Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

Security Affairs

NOVEMBER 23, 2023

American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack. AutoZone is an American retailer and distributor of automotive parts and accessories. The company is one of the largest aftermarket automotive parts and accessories retailers in the United States.

Data breaches

Data breaches Retail Education Ransomware

Evolve Bank data breach impacted over 7.6 million individuals

Security Affairs

JULY 9, 2024

The analysis of the data leaked by the LockBit group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust. An update published on June 26, 2024 12:00pm confirmed that the company’s retail banking customers’ debit cards, online, and digital banking credentials do not appear to be impacted.

Data breaches

Data breaches Retail Cybersecurity Ransomware

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Security Affairs

NOVEMBER 20, 2020

This ransomware strain emerged in September 2020, but the threat actors behind already managed to lock quite big companies, such as game developers Crytek, booksellers Barnes & Noble, and most recently a retail giant Cencosud from Chile. of victims) and Retail (14.5%). ProLock = Egregor. Inside Egregor.

Ransomware

Ransomware Retail Encryption Manufacturing

Evolve Bank data breach impacted fintech firms Wise and Affirm

Security Affairs

JULY 2, 2024

The analysis of the data leaked by the LockBit group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust. An update published on June 26, 2024 12:00pm confirmed that the company’s retail banking customers’ debit cards, online, and digital banking credentials do not appear to be impacted.

Data breaches

Data breaches Retail Cybersecurity IT

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Security Affairs

SEPTEMBER 4, 2021

As a California-based provider of POS technology for the retail and hospitality sector, a successful infection would allow the group to obtain payment card data and later sell the information on online marketplaces.” ” reads the analysis published by Anomali.

Retail

Retail Sales Phishing IT

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

JUNE 10, 2021

Threat hunting and adversarial cyber intelligence company Group-IB published a comprehensive analysis of fraud cases on a global scale. In 2020, a multi-stage scam called Rabbit Hole targeted companies’ brands, primarily retail and online services. On average, users visited 40,000 fraudulent websites every day.

Phishing

Phishing Retail Insurance Risk

Sugar Ransomware, a new RaaS in the threat landscape

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware

Ransomware Retail Libraries Encryption

Russian TA505 threat actor target financial entities worldwide

Security Affairs

APRIL 18, 2019

“CyberInt researchers have been tracking various activities following the spear-phishing campaign targeting large US-based retailers detected in December 2018.” ” reads the analysis published by Cyberint. ” continues the analysis published by Cyberint.

Retail

Retail Phishing Ransomware Access

LockBit group falsely claimed the hack of the Federal Reserve

Security Affairs

JUNE 27, 2024

The analysis of the data leaked by the group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust. An update published on June 26, 2024 12:00pm confirmed that the company’s retail banking customers’ debit cards, online, and digital banking credentials do not appear to be impacted.

Retail

Retail Ransomware Cybersecurity Compliance

New Data Covers How the Retail Market is at Greater Risk of Industry-Specific Cyberthreats

KnowBe4

NOVEMBER 22, 2023

A new analysis of the retail market’s threat landscape discusses the challenges faced by this industry and what threat tactics are being used to take advantage of retail’s cyber weaknesses.

Retail

Retail Marketing Risk Security awareness

Report: Threat of Emotet and Ryuk

Security Affairs

JANUARY 31, 2020

Analyzing the general distribution of the compromised domains, grouped by category, it is possible to verify that the most affected were as follows: professional/companies (20.2%), personal (13.5%), retail (12.7%) and industry (11.9%). Social media/communication organizations, health care and non-profit organizations were less impacted.

Ransomware

Ransomware Retail Phishing Encryption

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

” reads the analysis published by FireEye. Mandiant researchers highlighted an important with operations conducted by the TA505 cybercrime gang (aka Evil Corp ), which has been active since 2014 focusing on retail and banking sectors. ” reads the analysis.

Ransomware

Ransomware IT Healthcare Phishing

New Agent Raccoon malware targets the Middle East, Africa and the US

Security Affairs

DECEMBER 3, 2023

The malware was used in attacks against multiple industries, including education, real estate, retail, non-profit organizations, telecom companies, and governments. The analysis of the C2 infrastructure revealed that it dates back to 2020.

Retail

Retail Education Communications Government

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

reads the Elliptic’s report. “Our analysis suggests that Black Basta has received at least $107 million in ransom payments since early 2022, across more than 90 victims. Most of the victims are in the manufacturing, engineering and construction, and retail sectors. The average ransom payment was $1.2 in Germany, and 5.9%

Ransomware

Ransomware Blockchain Retail Insurance

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Ransomware

Ransomware IT Retail Manufacturing

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Security Affairs

MARCH 30, 2020

” reads the analysis published by CheckPoint. One way to do this is NOT to click on promotional links in emails, and instead, Google your desired retailer and click the link from the Google results page. Out of these registered domains, 4% have been found to contain suspicious characteristics.”

Communications

Communications Retail Authentication Government

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

” states the analysis published by FireEye. The groups targeted organizations in the business services, financial, health, retail/consumer, aero-military, engineering and manufacturing, government, education, transportation, and utilities industries.

Manufacturing

Manufacturing Phishing Military Retail

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

MARCH 27, 2020

According to industry researchers, TA505 is known to have carried out attacks on banks, medical institutions retailers and other businesses in the past. During the analysis of these samples Group-IB Threat Hunting Intelligence team has identified at least two affected companies from Belgium and Germany. 126 and 37.120.145 [. ]

Healthcare

Healthcare Manufacturing Cybersecurity Retail

FIN7 hackers target enterprises with weaponized USB drives via USPS

Security Affairs

MARCH 29, 2020

The packages have been sent to several businesses, including retails , restaurants, hotels. “To start the analysis, we inspected the drive for inscriptions such as serial numbers. ” reads the analysis published by Trustwave. ” continues the analysis. ” concludes Trustwave.

Phishing

Phishing Retail Sales Cybersecurity

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts. Kavzharadze accepted Bitcoin as payment for the credentials.

Sales

Sales Retail Personal data Passwords

TA505 is expanding its operations

Security Affairs

MAY 29, 2019

The threat group is also known for its recent attack campaign against Bank and Retail business sectors, but the latest evidence indicates a potential expansion of its criminal operation to other industries too. Technical Analysis. During the analysis, we also noticed the “veter 1605 _MAPS_10 cr0.exe” Part of extracted macro.

IT

IT Retail Archiving File names

COVID-19 ‘Breach Bubble’ Waiting to Pop?

Krebs on Security

JUNE 30, 2020

Global lockdowns from COVID-19 have resulted in far fewer fraudsters willing or able to visit retail stores to use their counterfeit cards, and the decreased demand has severely depressed prices in the underground for purloined card data. An ad for a site selling stolen payment card data, circa March 2020. .

Sales

Sales Retail Marketing Security

Revolutionizing budgeting and planning processes for a retail giant

IBM Big Data Hub

OCTOBER 19, 2023

Landmark Retail is one of the largest omnichannel retailers across the Middle East and Northern Africa (MENA), India and Southeast Asia (SEA). It is a division of Landmark Group, a well-known multinational retail and hospitality conglomerate headquartered in Dubai.

Retail

Retail Analytics Government Sales

VF Corp December data breach impacts 35 million customers

Security Affairs

JANUARY 19, 2024

“Based on VF’s preliminary analysis from its ongoing investigation, VF currently estimates that the threat actor stole personal data of approximately 35.5 The incident interrupted retail store inventory replenishment and delayed order fulfillment. million individual consumers.”

Data breaches

Data breaches Passwords Retail Insurance

Grayfly APT uses recently discovered Sidewalk backdoor

Security Affairs

SEPTEMBER 10, 2021

In late August, ESET researchers uncovered the SideWalk backdoor that was employed by the Chine cyberespionage group in an attack aimed at a computer retail company based in the U.S. ” reads the analysis published by Broadcom’s Symantec. ” continues the analysis.

Retail

Retail Risk Security IT

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

The majority of intercepted credentials by Agent Tesla related to financial services, online-retailers, e-government systems and personal and business e-mail accounts. . Researchers found active instances of Agent Tesla and developed a mechanism to enumerate the affected clients and extract compromised data.

Financial Services

Financial Services Retail Education Information Security

Russians Shut Down Huge Card Fraud Ring

Krebs on Security

MARCH 26, 2020

Cybersecurity experts say the raid included the charging of a major carding kingpin thought to be tied to dozens of carding shops and to some of the bigger data breaches targeting western retailers over the past decade. Intel 471 says Selivanon also was charged along with Stroganov in this past week’s law enforcement action.

Retail

Retail Insurance Cybersecurity Data breaches

FIN6 recently expanded operations to target eCommerce sites

Security Affairs

AUGUST 31, 2019

FIN6 group has been active since 2015, past attacks were focused on point-of-sale (POS) machines used by retailers and companies in the hospitality sector in the U.S. ” reads the analysis published by IRIS. continues the analysis. ” continues the analysis. and Europe. .

Retail

Retail Libraries Sales Phishing

TA505 Group adds new ServHelper Backdoor and FlawedGrace RAT to its arsenal

Security Affairs

JANUARY 13, 2019

” reads the analysis published by Proofpoint. ” The TA505 group was first spotted by Proofpoint back 2017, it has been active at least since 2015 and targets organizations in financial and retail industries. ” reads the analysis published by Proofpoint.

IT

IT Financial Services Ransomware Retail

The stealthy email stealer in the TA505 hacker group’s arsenal

Security Affairs

MAY 16, 2019

In fact, many independent researchers pointed to a particular email attack wave probably related to the known TA505 hacking group , active since 2014 and focusing on Retail and Banking companies. Technical Analysis. The piece of malware under analysis were downloaded from “bullettruth[.com/out[.exe”, Pierluigi Paganini.

Retail

Retail Passwords Communications Phishing

Cisco discovered several flaws in Sierra Wireless AirLink ES450 devices

Security Affairs

APRIL 27, 2019

. “Several exploitable vulnerabilities exist in the Sierra Wireless AirLink ES450, an LTE gateway designed for distributed enterprise, such as retail point-of-sale or industrial control systems.” ” reads the analysis published by Cisco Talos.

Passwords

Passwords IoT Sales Authentication

Magecart campaign abuses legitimate sites to host web skimmers and act as C2

Security Affairs

JUNE 5, 2023

” reads the analysis published by Akamai. ” continues the analysis. “Traditional static analysis tools prove inadequate in countering web skimmers, as they continually modify their methods and employ increasingly sophisticated techniques that can evade static analysis.”

CMS

CMS Retail Analytics IT

MY TAKE: Can ‘Network Traffic Analysis’ cure the security ills of digital transformation?

The Last Watchdog

AUGUST 29, 2018

This requires full stream reassembly for content analysis, and then real time transaction analysis, all at speeds of millions of transactions per second.”. By really understanding these relationships, and what represents privileged access and what represents control, we’re able to do much more sophisticated analysis.”.

Digital transformation

Digital transformation Security Analytics Access

2021 data breach exposed data of 70 Million Luxottica customers

Security Affairs

MAY 20, 2023

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Data breaches

Data breaches Retail Ransomware Sales

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Security

Security Ransomware Data breaches IoT

Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT

Security Affairs

APRIL 22, 2019

Attackers hit organizations in several industries including Technology, Retail, Manufacturing, State/Local Government, Hospitality, Medical, and other Professional business. ” reads the analysis published by Palo Alto Networks. ” continues the analysis. ” reads the analysis. The analysis of a single bit.ly

Retail

Retail Manufacturing Passwords Government

FBI warns US organizations of ProLock ransomware decryptor not working

Security Affairs

MAY 18, 2020

issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. ” reads the analysis published by Krebs. issued a flash alert to warn organizations in the United States that the ProLock ransomware decryptor doesn’t work properly.

Ransomware

Ransomware Retail Access Security

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Security Affairs

JUNE 12, 2019

At the time, FireEye and root9B published detailed reports about a series of attacks targeting the retail sector. ” reads the analysis published by Morphisec. ” continues the analysis. The ShellTea attempt to evade detection by checking the presence of virtualized environments and standard analysis tools.

Phishing

Phishing Retail Communications Security

Retailers can tap into generative AI to enhance support for customers and employees

IBM Big Data Hub

DECEMBER 5, 2023

As the retail industry witnesses a shift towards a more digital, on-demand consumer base, AI is becoming the secret weapon for retailers to better understand and cater to this evolving consumer behavior. Retailers recognize the need to build their strategies around AI, integrating it into many aspects of their operations.

Retail

Retail Unstructured data Artificial Intelligence Sales

Prominent Carding Marketplace UniCC announced it’s shutting down

Security Affairs

JANUARY 15, 2022

“Hundreds of millions of payment card details have been stolen from online retailers, banks and payments companies before being sold for cryptocurrency on online marketplaces such as UniCC.” ” reads the analysis published by Elliptic Threat Intel.

Marketing

Marketing Retail Sales Ransomware

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Security Affairs

DECEMBER 1, 2023

“Our analysis suggests that Black Basta has received at least $107 million in ransom payments since early 2022, across more than 90 victims. ” Most of the victims are in the manufacturing, engineering and construction, and retail sectors. ” reads the Elliptic’s report. The average ransom payment was $1.2

Ransomware

Ransomware Blockchain Retail Insurance

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Analysis: Why Regulators Got Tough With H&M

Webinars

Trending Sources

Analysis: Fat Face's Awkward Breach Notification

Webinars

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

Evolve Bank data breach impacted over 7.6 million individuals

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Evolve Bank data breach impacted fintech firms Wise and Affirm

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Global Scamdemic: Scams Become Number One Online Crime

Sugar Ransomware, a new RaaS in the threat landscape

Russian TA505 threat actor target financial entities worldwide

LockBit group falsely claimed the hack of the Federal Reserve

New Data Covers How the Retail Market is at Greater Risk of Industry-Specific Cyberthreats

Report: Threat of Emotet and Ryuk

FIN11 gang started deploying ransomware to monetize its operations

New Agent Raccoon malware targets the Middle East, Africa and the US

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Nefilim ransomware gang published Luxottica data on its leak site

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

FIN7 hackers target enterprises with weaponized USB drives via USPS

Russian national sentenced to 40 months for selling stolen data on the dark web

TA505 is expanding its operations

COVID-19 ‘Breach Bubble’ Waiting to Pop?

Revolutionizing budgeting and planning processes for a retail giant

VF Corp December data breach impacts 35 million customers

Grayfly APT uses recently discovered Sidewalk backdoor

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Russians Shut Down Huge Card Fraud Ring

FIN6 recently expanded operations to target eCommerce sites

TA505 Group adds new ServHelper Backdoor and FlawedGrace RAT to its arsenal

The stealthy email stealer in the TA505 hacker group’s arsenal

Cisco discovered several flaws in Sierra Wireless AirLink ES450 devices

Magecart campaign abuses legitimate sites to host web skimmers and act as C2

MY TAKE: Can ‘Network Traffic Analysis’ cure the security ills of digital transformation?

2021 data breach exposed data of 70 Million Luxottica customers

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT

FBI warns US organizations of ProLock ransomware decryptor not working

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Retailers can tap into generative AI to enhance support for customers and employees

Prominent Carding Marketplace UniCC announced it’s shutting down

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Stay Connected