Retail News, Articles and Updates

Vendetta Brothers scalable POS campaign revealed

Vendetta Brothers scalable POS campaign revealed

By

Security researchers have uncovered a detailed cybercrime campaign against point-of-sale systems managed by two entrepreneurial criminals who have instituted the best practices of the global economy.

Hairy situation: Just For Men website rigged to redirect to RIG Exploit Kit

Hairy situation: Just For Men website rigged to redirect to RIG Exploit Kit

By

Executives at Combe Incorporated may have sprung a few new gray hairs after learning that the website for its Just for Men brand of hair coloring products was compromised to serve up malware.

Kimpton Hotels details data breach, dozens of properties impacted

Kimpton Hotels details data breach, dozens of properties impacted

By

The Kimpton Hotel chain officially notified its customers that its point-of-sale system severs had been infected with malware earlier this year, possibly exposing payment card information and cardholder names.

Misfortune cookie: Mr. Chow restaurants website hacked to distribute ransomware

Misfortune cookie: Mr. Chow restaurants website hacked to distribute ransomware

By

The website for the upscale Mr. Chow restaurants has been compromised to deliver CrypMIC ransomware to visitors via the Neutrino Exploit Kit.

Jerry's Artarama hit with hack

Jerry's Artarama hit with hack

By

A letter has gone out to customers of Jerry's Artarama advising that its online portal "may have been attacked" by a hacker and customer information "may have been compromised."

Dridex on the loose again, this time in Switzerland

Dridex on the loose again, this time in Switzerland

By

The meteoric rise of Locky ransomware has not completely supplanted the distribution of the notorious Dridex malware.

After the breach: Settlement expected for 50M Home Depot customers

After the breach: Settlement expected for 50M Home Depot customers

By

A settlement is brewing between The Home Depot and 50 million customers whose personally identifiable information was compromised in a hack in 2014.

Unwanted guests: Hackers breach HEI Hotels & Resorts' POS terminals

Unwanted guests: Hackers breach HEI Hotels & Resorts' POS terminals

By

In the latest data breach impacting the hospitality industry, cybercriminals installed malware in the point-of-sale systems of HEI Hotels & Resorts and checked out with customer data that likely includes payment card information.

Research firm finds MICROS hackers infected more POS vendors

Research firm finds MICROS hackers infected more POS vendors

By

Fresh off the discovery that hackers compromised the customer support portal for Oracle's MICROS point-of-sale systems, a new shocking report surfaced, revealing that at least five more POS vendors were similarly breached.

Kimpton Hotel chain investigating possible breach

Kimpton Hotel chain investigating possible breach

By

Kimpton Hotels and Restaurants advised guests of a possible breach.

Point-of-sale experts bypass security measures in popular PIN pad, including EMV protections

Point-of-sale experts bypass security measures in popular PIN pad, including EMV protections

By

After physically demonstrating how to hijack retail point-of-sale transactions - including those using EMV-standard chip cards - two security experts from NCR Corporation offered attendees at Black Hat critical tips on preventing such incidents in real life.

1.5M downloaded fake app Prisma from Google Play

1.5M downloaded fake app Prisma from Google Play

By

A number of phony apps, masquerading as the popular photo-editing app Prisma, have been removed from the Google Play Store, but not before 1.5 million users downloaded the Android version

POS-terminals become target of cyber-attacks in Russia this year

POS-terminals become target of cyber-attacks in Russia this year

POS-terminals have increasingly become a target for cyber-attackers in Russia, posing a threat to ordinary buyers and shoppers, according to analysts of FinCERT

Russian web hub Deer.io offering stolen goods and exploit services, report

Russian web hub Deer.io offering stolen goods and exploit services, report

By

A robust underground marketplace for the sale of stolen products from compromised accounts as well as shady online services has been detected in Russia.

Cicis Pizza delivers the bad news, confirms breach at 138 locations

Cicis Pizza delivers the bad news, confirms breach at 138 locations

By

Cicis Pizza has officially acknowledged a payment card data breach in 138 of its restaurant locations, after reports of a point-of-sale malware attack first came to light last month.

Hackers compromising checkout process on retail sites, redirecting shoppers to phishing page

Hackers compromising checkout process on retail sites, redirecting shoppers to phishing page

By

Researchers at Sucuri has uncovered a sampling of novel e-commerce attacks that combine the classic duplicity of phishing schemes with the insidiousness of malicious webpage redirects.

Malware on Omni Hotel POS systems scarfed payment card info

Malware on Omni Hotel POS systems scarfed payment card info

By

Omni Hotels & Resorts said guests had to physically present payment cards at one of its affected POS systems to be affected by malware stealing payment card information during a six-month period.

Wendy's revises data breach figures; over 1K locations compromised by POS malware

Wendy's revises data breach figures; over 1K locations compromised by POS malware

By

Wendy's yesterday identified over 1,000 U.S. franchised locations that were affected by two variants of point-of-sale malware discovered earlier this year.

Spike in cyberattacks expected to exploit upcoming Olympics, report

Spike in cyberattacks expected to exploit upcoming Olympics, report

By

An Israel-based security firm has issued a warning to fans of the upcoming Olympics to be wary of phony offers.

Clinton pledges tech evolution

Clinton pledges tech evolution

By

Democratic presidential hopeful Hillary Clinton called for administrative reform to help bring the U.S. copyright system into the digital age.

Air India frequent flier miles hacked

Air India frequent flier miles hacked

By

Unidentified individuals hacked into the loyalty program of at least 20 accounts at Air India to steal nearly $24,000 worth of frequent flier miles.

Twitter, HealthCare.gov top annual list of most trustworthy websites

Twitter, HealthCare.gov top annual list of most trustworthy websites

By

At one time ridiculed over lax cybersecurity, the federal health insurance exchange site HealthCare.gov scored second-highest out of approximately 1,000 websites in the Online Trust Alliance's eighth annual Trust Audit and Honor Roll.

Wendy's POS breach 'considerably' bigger than first thought

Wendy's POS breach 'considerably' bigger than first thought

By

Even more fast-food patrons may have a beef with The Wendy's Company, after the restaurant chain announced yesterday that the number of restaurants affected by a POS data breach may be "considerably higher" than first thought.

Consumers taking their business elsewhere after a hack, Centrify survey

Consumers taking their business elsewhere after a hack, Centrify survey

By

A new study examines consumer attitudes toward corporate hacking and companies should take heed.

Finish Line leverages IT auditing service to secure increase in cyber budget

Finish Line leverages IT auditing service to secure increase in cyber budget

By

In the perennial corporate tug-of-war over budget, Finish Line's director of security and compliance Cory Deeter recently relied on an independent security assessment service to influence upper-level executives to increase funding for cybersecurity initiatives.

FastPOS malware instantly delivers stolen credit card data

FastPOS malware instantly delivers stolen credit card data

By

Cybercriminals must be feeling the need for speed by brewing up a new point-of-sale (POS) malware family called FastPOS that is much faster at snatching and disseminating stolen credit card information.

New Locky ransomware campaign sets sights on Amazon customers

New Locky ransomware campaign sets sights on Amazon customers

By

Amazon customers are the target of a wide-ranging phishing email scam intended to fool recipients into opening up a malicious attachment that results in the downloading of Locky ransomware.

Flaws on Visa's HTTPS-protected sites allow hackers to insert JavaScript code

Flaws on Visa's HTTPS-protected sites allow hackers to insert JavaScript code

By

Vulnerabilities allow attackers to use an exploit known as the "forbidden attack," affecting dozens of Visa Inc.'s HTTPS-protected websites.

APWG report: Phishing surges by 250 percent in Q1 2016

APWG report: Phishing surges by 250 percent in Q1 2016

By

The Anti-Phishing Working Group observed more phishing attacks in the first quarter of 2016 than in any other three-month span since it began tracking data in 2004, according to the anti-cybercrime coalition.

Magento flaw allowed hackers to execute code using APIs

Magento flaw allowed hackers to execute code using APIs

By

Magento released a patch for a critical vulnerability that allowed unauthenticated users to execute PHP code remotely on the server using APIs.

RECENT COMMENTS

Sign up to our newsletters

FOLLOW US