Krebs on Security

MAY 11, 2020

Diebold Nixdorf , a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations. The 35,000-employee company also produces point-of-sale systems and software used by many retailers. ” NOT SO PRO LOCK.

Ransomware 362

Ransomware Retail Data breaches Sales 362

Security Affairs

APRIL 25, 2024

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply. Skanlog, a critical distributor for Systembolaget, the Swedish government-owned retail chain suffered a ransomware attack. Systembolaget has a monopoly on the sale of alcoholic beverages containing more than 3.5%

Ransomware 339

Ransomware Retail Sales Government 339

Security Affairs

FEBRUARY 20, 2020

A ransomware attack has disrupted operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. ” reads a security breach notice published by the company on its website. “Market supply is secure. Fuel sales at our retail locations continue unhindered. Pierluigi Paganini.

Ransomware 360

Ransomware Encryption Retail Sales 360

Security Affairs

NOVEMBER 8, 2021

Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. The sales online were not affected by the security incident. Bleeping Computer, citing screenshots posted on Twitter, reported that 3,100 servers were infected with the ransomware.

Ransomware 331

Ransomware Computer and Electronics Retail Sales 331

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. The average ransom payment was $1.2

Ransomware 355

Ransomware Blockchain Retail Insurance 355

Security Affairs

NOVEMBER 4, 2020

Toymaker giant Mattel disclosed a ransomware attack, the incident took place in July and impacted some of its business operations. Toy industry giant Mattel announced that it has suffered a ransomware attack that took place on July 28th, 2020, and impacted some of its business operations. ” reads the 10-Q form.

Ransomware 354

Ransomware Retail Encryption IT 354

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems.

Data breaches 331

Data breaches Ransomware Manufacturing Encryption 331

Security Affairs

NOVEMBER 20, 2020

The QakBot banking trojan has dropped the ProLock ransomware, they are now opting for the Egregor ransomware in their operations. Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. ProLock = Egregor.

Ransomware 352

Ransomware Retail Encryption Manufacturing 352

Security Affairs

JANUARY 30, 2024

Energy management and industrial automation firm Schneider Electric suffered a data breach after a Cactus ransomware attack. The attack was carried out by the Cactus ransomware gang , which claims to have stolen terabytes of corporate data from the company. The Cactus ransomware relies on multiple legitimate tools (e.g.

Ransomware 350

Ransomware Data breaches Digital transformation Encryption 350

Security Affairs

OCTOBER 20, 2020

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. BleepingComputer website, citing the security firm Bad Packets, speculates that the Italian was using a Citrix ADX controller device vulnerable to the critical CVE-2019-19781 vulnerability in Citrix devices.

Ransomware 359

Ransomware IT Retail Manufacturing 359

Security Affairs

MAY 18, 2020

issued a flash alert to warn organizations in the United States that the ProLock ransomware decryptor doesn’t work properly. issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. Early this month, the FBI?

Ransomware 357

Ransomware Retail Access Security 357

Security Affairs

JANUARY 19, 2024

Ransomware groups claimed that they successfully targeted 4191 victims in 2023, Cybernews researchers report. According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. Winter was the least active time (14.6%

Ransomware 351

Ransomware Manufacturing Retail Insurance 351

Security Affairs

OCTOBER 18, 2020

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method. ” reads the analysis published by FireEye.

Ransomware 349

Ransomware IT Healthcare Phishing 349

Security Affairs

AUGUST 6, 2021

RansomEXX ransomware operators hit the popular Italian luxury fashion house Ermenegildo Zegna Holding and started leaking stolen files. As of 2018, Ermenegildo Zegna operated 480 retail stores (267 of which company-owned) across the world. Zegna is one of the most famous Italian luxury fashion houses. Pierluigi Paganini.

Ransomware 321

Ransomware Archiving Retail Manufacturing 321

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware 275

Ransomware Retail Libraries Encryption 275

Security Affairs

OCTOBER 28, 2020

Office furniture company Steelcase was hit by Ryuk ransomware attack that forced it to shut down its network to avoid the malware from spreading. Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries.

Ransomware 318

Ransomware Computer and Electronics Manufacturing Mining 318

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The company said that the ransomware attack took place on Friday night and impacted only one data center in Sweden. The company later confirmed the news of an Akira ransomware attack.

Ransomware 342

Ransomware Government Retail Cloud 342

Security Affairs

AUGUST 20, 2021

Lojas Renner, the largest Brazilian department stores clothing company, suffered a ransomware attack that impacted its IT infrastructure. Lojas Renner, the largest Brazilian department stores clothing company, announced to have suffered a ransomware attack that impacted its IT infrastructure. SecurityAffairs – hacking, ransomware).

Ransomware 283

Ransomware Retail Data breaches Marketing 283

Security Affairs

JULY 4, 2021

Swedish supermarket chain Coop is the first company to disclose the impact of the recent supply chain ransomware attack that hit Kaseya. The supermarket chain Coop shut down approximately 500 stores as a result of the supply chain ransomware attack that hit the provider Kaseya. ” reads a statement from Visma. Pierluigi Paganini.

Ransomware 339

Ransomware Retail Encryption Security 339

Security Affairs

OCTOBER 24, 2020

The systems at the US-based ski and golf resort operator were infected with the WastedLocker ransomware, the incident impacted reservation systems. The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. Pierluigi Paganini.

Ransomware 305

Ransomware Retail Manufacturing Encryption 305

Security Affairs

FEBRUARY 19, 2024

The Cactus ransomware gang claims the theft of 1.5TB of data from the Energy management and industrial automation firm Schneider Electric. The Cactus ransomware group claims responsibility for pilfering 1.5TB of data from the Energy management and industrial automation giant Schneider Electric.

Ransomware 345

Ransomware Digital transformation Encryption Retail 345

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware 287

Ransomware Encryption Government Retail 287

Security Affairs

APRIL 21, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches 324

Data breaches Security Ransomware MDM 324

Data Breach Today

APRIL 17, 2024

Experts See Surge in Attacks, Including in Russia, Using Leaked LockBit Code What do a German healthcare network, a Russian security company and an American bridal clothing retailer have in common?

Retail 296

Retail Ransomware Security 296

Security Affairs

JANUARY 7, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 306

Artificial Intelligence Security Data breaches Ransomware 306

Security Affairs

JULY 4, 2021

Kaseya was addressing the zero-day vulnerability that REvil ransomware gang exploited to breach on-premise Kaseya VSA servers. A new supply chain attack made the headlines, on Friday the REvil ransomware gang hit the Kaseya cloud-based MSP platform impacting MSPs and their customers. “So ransomware can push itself to systems.

Ransomware 347

Ransomware Retail Sales Encryption 347

Security Affairs

DECEMBER 1, 2023

The Black Basta ransomware gang infected over 300 victims accumulating ransom payments exceeding $100 million since early 2022. The Black Basta ransomware group has been active since April 2022, like other ransomware operations, it implements a double-extortion attack model. ” reads the Elliptic’s report.

Ransomware 305

Ransomware Blockchain Retail Insurance 305

Security Affairs

MARCH 2, 2023

Retailer WH Smith disclosed a data breach following a cyber attack, threat actors had access to access company data. Retailer WH Smith revealed that threat actors have breached its infrastructure and had access to the data of about 12,500 current and former employees.

Retail 190

Retail Data breaches Access Ransomware 190

Security Affairs

NOVEMBER 29, 2020

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 291 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security 263

Security Data breaches Ransomware Retail 263

Security Affairs

JULY 17, 2024

The world’s largest recreational boat and yacht retailer MarineMax, disclosed a data breach following a cyber attack. The world’s largest recreational boat and yacht retailer MarineMax disclosed a data breach that impacted over 123,000 individuals.

Data breaches 321

Data breaches Retail Ransomware Insurance 321

Security Affairs

JULY 9, 2024

The Lockbit ransomware attack on Evolve Bank has compromised the personal information of over 7.6 Evolve Bank & Trust published a notice on its website to confirm the security breach and announced it has launched an investigation into the incident. million individuals. reads the notice of Cybersecurity Incident.

Data breaches 326

Data breaches Retail Cybersecurity Ransomware 326

Security Affairs

SEPTEMBER 3, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 309

Security Ransomware Data breaches IoT 309

Security Affairs

FEBRUARY 6, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 352 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security 246

Security Ransomware Phishing Retail 246

Security Affairs

MARCH 4, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here. FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Security 246

Security Ransomware Data breaches Retail 246

Security Affairs

JUNE 7, 2023

Clop ransomware group claims to have hacked hundreds of companies globally by exploiting MOVEit Transfer vulnerability. The Clop ransomware group may have compromised hundreds of companies worldwide by exploiting a vulnerability in MOVEit Transfer software. ” reads the message published by the gang.

Ransomware 246

Ransomware Retail Personal data Access 246

Security Affairs

JUNE 16, 2023

British multinational oil and gas company Shell has confirmed that it has suffered a ransomware attack conducted by the Clop group. The company is investigating the security breach and said that at this time the attack had no impact to its core IT systems. “We WE ARE ONLY FINANCIAL MOTIVATED AND DO NOT CARE ANYTHING ABOUT POLITICS. “

Ransomware 246

Ransomware Data breaches Retail Government 246

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. ” reads the analysis published by the security firm.

Ransomware 246

Ransomware Retail Access Personal data 246