Groups, Retail and Security - Information Management Today

Chilean-based retail giant Cencosud hit by Egregor Ransomware

Security Affairs

NOVEMBER 15, 2020

Chilean-based retail giant Cencosud has suffered a ransomware attack that impacted operations at its stores, Egregor ransomware appears to be involved. A ransomware attack, allegedly launched by the Egregor ransomware gang, hit the Chilean-based retail giant Cencosud, the incident impacted operations at its stores. Pierluigi Paganini.

Retail

Retail Ransomware Encryption IT

Crooks stole €15 Million from European retail company Pepco

Security Affairs

MARCH 1, 2024

million from the European variety retail and discount company Pepco through a phishing attack. The Hungarian business of the European discount retailer Pepco Group has been the victim of a phishing attack, crooks stole about 15 million euros ($16.3 Crooks stole €15.5 ” reads the press release published by the company.

Retail

Retail Phishing Access IT

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Security Affairs

SEPTEMBER 19, 2018

Magecart hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. The Magecart cybercrime group is back, this time the hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. Pierluigi Paganini.

Retail

Retail Computer and Electronics Data breaches Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Security Affairs

JANUARY 1, 2024

The Cactus ransomware group claims to have hacked Coop, one of the largest retail and grocery providers in Sweden. Coop is one of the largest retail and grocery providers in Sweden, with approximately 800 stores across the country. The Cactus ransomware group added Coop to the list of victims on its Tor leak site.

Retail

Retail Ransomware Encryption Access

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Vietnam-linked APT group APT32 , also known as OceanLotus and APT-C-00, carried out cyber espionage campaigns against Chinese entities to gather intelligence on the COVID-19 crisis. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture

Agriculture IT Retail Manufacturing

Croatia’s largest petrol station chain INA group hit by ransomware attack

Security Affairs

FEBRUARY 20, 2020

S ome operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain were disrupted by a cyber attack. A ransomware attack has disrupted operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. “Market supply is secure. .”

Ransomware

Ransomware Encryption Retail Sales

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

Since learning of the security breach, the company immediately started incident response procedure with the help of external cybersecurity firms, including CrowdStrike. ” The incident response team is working to recover impacted systems and investigate the security breach. Blue Yonder Group , Inc.

Ransomware

Ransomware Retail Manufacturing Cloud

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. We strongly recommend patching.

Authentication

Authentication Retail Passwords Security

American retailer Guess discloses data breach after ransomware attack

Security Affairs

JULY 13, 2021

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. The company investigated the security breach with the help of a cybersecurity forensic firm that determined that unauthorized actor had access to personal information stored into Guess systems.

Retail

Retail Data breaches Ransomware Access

LockBit group falsely claimed the hack of the Federal Reserve

Security Affairs

JUNE 27, 2024

The LockBit ransomware group seems to have lied when they announced the hack of the US Federal Reserve. The LockBit ransomware group hasn’t hacked the Federal Reserve as it has recently claimed, the real victim is the Evolve Bank. The group hasn’t published any sample of the stolen data. The real victim is the Evolve Bank.

Retail

Retail Ransomware Compliance Cybersecurity

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Security Affairs

SEPTEMBER 4, 2021

As a California-based provider of POS technology for the retail and hospitality sector, a successful infection would allow the group to obtain payment card data and later sell the information on online marketplaces.” . “The specified targeting of the Clearmind domain fits well with FIN7’s preferred modus operandi.

Retail

Retail Sales Phishing IT

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers.

Access

Access Financial Services Retail Insurance

China-based Fangxiao group behind a long-running phishing campaign

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. Pierluigi Paganini.

Phishing

Phishing Retail Security IT

New Data Leaks Add to Australia's Data Security Reckoning

Data Breach Today

OCTOBER 18, 2022

MyDeal Data Appears Online, Vinomofo Discloses Breach, Optus Fallout Continues Personal data from MyDeal, a marketplace owned by Australia's Woolworths Group grocery chain, has appeared for sale on a data leak forum.

Retail

Retail Security Sales Personal data

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware

Ransomware Encryption Government Retail

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 21, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches

Data breaches Security Ransomware MDM

Lotsy group targets Italian and Spanish-speaking users

Security Affairs

AUGUST 2, 2019

Group-IB discovered massive fraudulent campaigns carried out by Lotsy group involving the use of dozens of well-known brands aimed at Italian and Spanish-speaking customers. Group-IB’s Brand Protection team has detected a total of 114 related fake web-resources involved in the scheme. How does this scheme work?

Retail

Retail Marketing Cybersecurity Phishing

TA505 Group adds new ServHelper Backdoor and FlawedGrace RAT to its arsenal

Security Affairs

JANUARY 13, 2019

Security researchers at Proofpoint researchers discovered two strains of malware tracked as ServHelper and FlawedGrace distributed through phishing campaigns by the TA505 crime gang. In November experts observed several campaigns carried out by the TA505 group, in three of them the threat actors delivered the ServHelper malware.

IT

IT Financial Services Ransomware Retail

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Group-IB, has analyzed key recent changes to the global cyberthreat landscape in the “Hi-Tech Crime Trends 2019/2020” report. Group-IB , a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has analyzed key recent changes to the global cyberthreat landscape.

IT

IT Military Cybersecurity Phishing

Nedbank client data compromised in security breach at third-party provider

Security Affairs

FEBRUARY 14, 2020

Nedbank bank announced on Thursday that a security breach at a third-party supplier has compromised the details of as many as 1.7 Nedbank bank disclosed on Thursday a security breach at a third-party supplier that has compromised the details of as many as 1.7 ” reads a security notice published by the bank.

Security

Security Marketing Retail Communications

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Weissman's World

FEBRUARY 1, 2023

Today, however, I’d like to speak to retailers, where the opportunities to Do Information Right™ seem markedly… Read More » Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy The post Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy appeared first on Holly Group.

Retail

Retail Security Government Records Management

TA544 group behind a spike in Ursnif malware campaigns targeting Italy

Security Affairs

OCTOBER 3, 2021

Proofpoint researchers have discovered a new Ursnif baking Trojan campaign carried out by a group tracked as TA544 that is targeting organizations in Italy. The TA544 group leverages phishing and social engineering techniques to lure victims into enabling macro included in weaponized documents. Banca Sella UniCredit Group.

Retail

Retail Phishing Cybersecurity Risk

Retailer WH Smith discloses data breach after a cyberattack

Security Affairs

MARCH 2, 2023

Retailer WH Smith disclosed a data breach following a cyber attack, threat actors had access to access company data. Retailer WH Smith revealed that threat actors have breached its infrastructure and had access to the data of about 12,500 current and former employees.

Retail

Retail Data breaches Access Ransomware

Clop Ransomware gang claims to have stolen 2 million credit cards from E-Land

Security Affairs

DECEMBER 3, 2020

E-Land Retail suffered a ransomware attack, Clop ransomware operators claim to have stolen 2 million credit cards from the company. E-Land Retail is a South Korean conglomerate headquartered in Changjeon-dong Mapo-gu Seoul, South Korea. ” reads the security breach notice. Pierluigi Paganini.

Ransomware

Ransomware Retail Encryption Sales

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 Experts warn of active exploitation of the CVE-2018-13379 , a security bug heavily exploited by LockBit to breach networks. ransomware. in Australia since 2020.

Ransomware

Ransomware Retail Security Manufacturing

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Security Affairs

JUNE 12, 2019

After two years of silence, FIN8 group is back and carried out a new campaign against the hotel-entertainment industry employing the ShellTea/PunchBuggy backdoor. The last time security experts documented the FIN8’s activities was in 2016 and 2017. ” reads the analysis published by Morphisec. ” continues the analysis.

Phishing

Phishing Retail Communications Security

Neiman Marcus discloses data breach, payment card data exposed

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data. Approximately 4.6

Data breaches

Data breaches Retail Passwords Access

Evolve Bank data breach impacted over 7.6 million individuals

Security Affairs

JULY 9, 2024

Despite the announcement, data leaked data from the group belongs to the Arkansas-based financial organization Evolve Bank & Trust. The analysis of the data leaked by the LockBit group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust. reads the notice of Cybersecurity Incident.

Data breaches

Data breaches Retail Cybersecurity Ransomware

Security Affairs newsletter Round 291

Security Affairs

NOVEMBER 29, 2020

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 291 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security

Security Data breaches Ransomware Retail

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

The US-based children’s clothing maker and online retailer Hanna Andersson discloses a data breach, attackers planted an e-skimmer on its e-commerce platform. Hacker groups under the Magecart umbrella continue to steal payment card data with so-called software skimmers. The malware was completely removed on November 11, 2019.

Data breaches

Data breaches Retail Cloud Insurance

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Security Affairs

NOVEMBER 20, 2020

Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. The biggest ransom demand detected by Group-IB team has been at $4 million worth of BTC. of victims) and Retail (14.5%). ProLock = Egregor.

Ransomware

Ransomware Retail Encryption Manufacturing

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Manufacturing Passwords

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. With retail sales during 2024 set to grow to between $5.23 trillion and $5.28 trillion and $5.28

Retail

Retail Risk Data breaches Sales

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches IoT

Evolve Bank data breach impacted fintech firms Wise and Affirm

Security Affairs

JULY 2, 2024

Despite the announcement, data leaked data from the group belongs to the Arkansas-based financial organization Evolve Bank & Trust. The analysis of the data leaked by the LockBit group on its Tor leak site on June 26 confirmed the documents belong to the Evolve Bank & Trust. reads the notice of Cybersecurity Incident.

Data breaches

Data breaches Retail Cybersecurity IT

Security Affairs newsletter Round 352

Security Affairs

FEBRUARY 6, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 352 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security

Security Ransomware Phishing Retail

MarineMax data breach impacted over 123,000 individuals

Security Affairs

JULY 17, 2024

The world’s largest recreational boat and yacht retailer MarineMax, disclosed a data breach following a cyber attack. The world’s largest recreational boat and yacht retailer MarineMax disclosed a data breach that impacted over 123,000 individuals.

Data breaches

Data breaches Retail Ransomware Insurance

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

Security Affairs

OCTOBER 20, 2020

Group-IB assisted Paxful, an international peer-to-peer cryptocurrency marketplace, in countering web-bot and social engineering attacks. Powered with Group-IB’s solution for online fraud prevention Secure Portal , the platform has managed to fight off over 220,000 requests from web-bots in just two months, shielding its 4.5

IT

IT Cybersecurity Retail Security

TA547 targets German organizations with Rhadamanthys malware

Security Affairs

APRIL 12, 2024

TA547 group is targeting dozens of German organizations with an information stealer called Rhadamanthys, Proofpoint warns. The group also operates as an initial access broker (IAB) and targets various geographic regions. The security firm pointed out that this is the first TA547 group to use this malware family.

Retail

Retail Passwords IT Security

Does Your Organization Have a Security.txt File?

Krebs on Security

SEPTEMBER 20, 2021

It happens all the time: Organizations get hacked because there isn’t an obvious way for security researchers to let them know about security vulnerabilities or data leaks. Having a security.txt file can make it easier for organizations to respond to active security threats. ” GET READY TO BE DELUGED.

Retail

Retail Security Encryption IT

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Security Affairs

AUGUST 6, 2021

Ermenegildo Zegna Group is the largest menswear brand in the world by revenue. As of 2018, Ermenegildo Zegna operated 480 retail stores (267 of which company-owned) across the world. The RansomEXX gang has been active since 2018 under the name Defray, in June 2020 the group rebranded as RansomEXX. Pierluigi Paganini.

Ransomware

Ransomware Archiving Retail Manufacturing

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

JUNE 10, 2021

Threat hunting and adversarial cyber intelligence company Group-IB published a comprehensive analysis of fraud cases on a global scale. Group-IB also unveiled Scam Intelligence, a fraud-tracking technology that paved the way for DRP, the company’s proprietary solution. million in one year .

Phishing

Phishing Retail Insurance Risk

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

Luxottica Group S.p.A. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Retail

Retail Manufacturing Ransomware Security

Ransomware Hit ATM Giant Diebold Nixdorf

Krebs on Security

MAY 11, 2020

Diebold Nixdorf , a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations. The 35,000-employee company also produces point-of-sale systems and software used by many retailers. ” NOT SO PRO LOCK.

Ransomware

Ransomware Retail Data breaches Sales

Chilean-based retail giant Cencosud hit by Egregor Ransomware

Crooks stole €15 Million from European retail company Pepco

Webinars

Trending Sources

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Webinars

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Croatia’s largest petrol station chain INA group hit by ransomware attack

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

American retailer Guess discloses data breach after ransomware attack

LockBit group falsely claimed the hack of the Federal Reserve

FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads

Iran-linked APT group Pioneer Kitten sells access to hacked networks

China-based Fangxiao group behind a long-running phishing campaign

New Data Leaks Add to Australia's Data Security Reckoning

PYSA ransomware gang is the most active group in November

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

Lotsy group targets Italian and Spanish-speaking users

TA505 Group adds new ServHelper Backdoor and FlawedGrace RAT to its arsenal

Group-IB presents its annual report on global threats to stability in cyberspace

Nedbank client data compromised in security breach at third-party provider

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

TA544 group behind a spike in Ursnif malware campaigns targeting Italy

Retailer WH Smith discloses data breach after a cyberattack

Clop Ransomware gang claims to have stolen 2 million credit cards from E-Land

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Neiman Marcus discloses data breach, payment card data exposed

Evolve Bank data breach impacted over 7.6 million individuals

Security Affairs newsletter Round 291

US-based children’s clothing maker Hanna Andersson discloses a data breach

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Passwordless Authentication without Secrets!

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Evolve Bank data breach impacted fintech firms Wise and Affirm

Security Affairs newsletter Round 352

MarineMax data breach impacted over 123,000 individuals

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

TA547 targets German organizations with Rhadamanthys malware

Does Your Organization Have a Security.txt File?

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Global Scamdemic: Scams Become Number One Online Crime

Hackers hit Luxottica, production stopped at two Italian plants

Ransomware Hit ATM Giant Diebold Nixdorf

Stay Connected