Major cybersecurity events on 7th September 2020 (Morning Post): Visa warns users of new e-skimmer dubbed Baka that exfiltrates payment card details, removes itself from memory. Ad scammers target TikTok’s #ForYou page. Zero-day vulnerability exploited to attack millions of WordPress sites.Continue readingHackers breach Warner Music Group websites, Criminals pilfer card data on Telegram through new skimming technique, and more
Tag: Magecart
Major cybersecurity events on 2nd September 2020 (Morning Post): Russian engineer, Pavel Zhovner, raised $5 million for Tamagotchi for Flipper Zero hackers. Cybercriminals launch new scams targeting global brand domain names. Magecart credit-card skimmer adds Telegram as C2 channel.Continue readingFacebook, Twitter suspends Russian propaganda accounts, Russia’s IRA discusses QAnon on Facebook, and more
Major cybersecurity events on 10th August 2020 (Evening Post): New evasive Magecart phishing attacks leverage modified favicon to inject e-skimmers, steal payment card data. Maze group claims responsibility for a ransomware attack targeted at Canon.Continue readingProctorU confirms breach after data leaked online, Subreddits vandalized with pro-Trump messages, and more
Major cybersecurity events on 8th July 2020 (Evening Post): German authorities seize BlueLeaks server, after it provided access to US police departments internal documents. Keeper threat group compromises 57o e-commerce sites, profiting around $7 million from it.Continue readingBEC gang Cosmic Lynx associated with 200 campaigns, Google Play hosts app delivering Cerebrus, and more
Major cybersecurity events on 29th June 2020 (Evening Post): Attackers hack E27, asks for donation in exchange for details about vulnerabilities. Maine Information and Analysis Center suffers data breach, leaks data. Evil Corp stopped from spreading ransomware, preventing attack on 30 major firms.Continue readingHackers sent explicit messages to breached list of students, Hidden Web Skimmers used to target ecommerce sites, and more
Major cybersecurity events on 23rd June 2020 (Morning Post): New Zealand police apprehends Alexander Vinnik for fraud, freezes his assets. Online fraudsters target young shoppers, steals £17 million. Flaw in firmware allows attackers to evade security on home routers.Continue readingGoogle Analytics leveraged to steal credit cards, CLOP hits Indiabulls, demands ransom in a day, and more
Major cybersecurity events on 15th June 2020 (Evening Post): Australian beverages company and Japanese beverage giant Kirin’s subsidiary Lion infected with ransomware, disrupts manufacturing process. Magecart hacks accessories’ giant Claire’s, gains access to credit card data.Continue readingScammers blackmail website owners for ransom, Defragger bug defrags SSD Drives too often, and more
Major cybersecurity events on 10th June 2020 (Evening Post): Misconfigured S3 bucket that has Magecart, malicious redirector code, compromised. Fake SpaceX YouTube channels scam viewers out of $150K in bitcoin. Adobe and Intel patches vulnerabilities.Continue readingHacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more
Major cybersecurity events on 19th May 2020 (evening post): PsyGenics, Inc. sends notice to potentially impacted customers after email incident. DoS attacks skyrocket, espionage dips according to Verizon’s 2020 Data Breach Investigations Report. Magecart malware stole card details, evaded security scans for 8 months.Continue reading9M EasyJet customers details exposed, Mirai, Hoaxcalls target Symantec, Bluetooth vulnerability exposes billions of devices, and more
Major cybersecurity events on 18th May 2020: Turla APT target diplomatic entities. Naikon returns, targets foreign affairs, science and technology ministries, with new malware. Wannabe ransomware operators arrested before hospital attacks. Several supercomputers across Europe hacked. Continue readingInterserve hacked, details of 100000 employees leaked, Massive data leak exposes 115M Pakistani users’ data, and more