Retail

Law firms file for class-action status in Target suit

Law firms file for class-action status in Target suit

By

Eleven law firms filed with a Minnesota court this past week to ask for class-action certification over Target's 2013 data breach.

SEC will not fine Target in aftermath of 2013 breach

SEC will not fine Target in aftermath of 2013 breach

By

The Securities and Exchange Commission will not penalize Target Corp. for a cyberattack two years ago in which credit card and other personal information of millions of customers was exposed.

Target settles with Visa following 2013 breach

By

Target will fork over as much as $67 million to banks issuing Visa cards and $10 million to customers who were affected in its 2013 breach.

Hacked, shuttered online photo print centers could prove costly to consumers, retailers

Hacked, shuttered online photo print centers could prove costly to consumers, retailers

By

As six major retailers spanning the U.S., Canada and the U.K. enter the second month of having their online photo print operations shuttered by hackers, industry analysts say the damage to consumers and the retailers could be significant in both data and dollars.

Imperva appoints Geraldine Elliot to board of directors

Imperva appoints Geraldine Elliot to board of directors

By

Geraldine "Gerri" Elliot was appointed by the cyber security solutions firm Impeva to the company's board of directors.

Square: Our card reader security software prevents hacks

Square: Our card reader security software prevents hacks

By

Square countered the claim of three Boston University graduates that its reader can be quickly and easily converted into a credit card skimmer.

Tripwire uncovers smart home hub zero-day vulnerabilities

By

Three top-selling smart home hubs on Amazon have zero-day vulnerabilities that could allow an outsider entry into the user's home, Tripwire reported.

Federal Reserve's Powell concerned about security of chip and signature

Federal Reserve's Powell concerned about security of chip and signature

By

Speaking at a Federal Reserve Bank of Kansas City conference, Jerome Powell called EMV card deployment a step forward but questioned the security of cards that use signatures, not PINs, for authentication.

Visa, FireEye team to help retailers, issuers fight cyber attacks

By

Visa and FireEye formed a partnership aimed at helping merchants and card issuers access threat intelligence and combat cyber attacks.

Report: MasterCard's biggest card issuers rebuffed Target breach deal

By

The Wall Street Journal reports that some of MasterCard's biggest issuers refused to back the breach settlement.

Information sharing at work

Information sharing at work

By

There's been quite a bit of lip service paid to the ages-old concept of information sharing, says Illena Armstrong, VP, editorial, SC Magazine..

The long and winding road: EMV adoption

The long and winding road: EMV adoption

By

Swapping out magnetic stripe payment cards for those equipped with computer chips is no small task, reports Karen Epper Hoffman.

Report: $19M breach settlement between MasterCard, Target terminated

Report: $19M breach settlement between MasterCard, Target terminated

By

A federal judge recently denied banks' motion to block the settlement, but now the deal has been nixed for different reasons.

Hackers exploit Starbucks auto-reload feature to steal from customers

Hackers exploit Starbucks auto-reload feature to steal from customers

By

Starbucks customers say auto-reload feature is being used to steal from their linked credit cards and bank accounts.

 POS threat 'Punkey' allows additional malware download for greater access

POS threat 'Punkey' allows additional malware download for greater access

By

Trustwave also found that the Punkey threat family and NewPosThings share the same code base.

FighterPOS malware strikes over 100 terminals in Brazil, captures info for 22K cards

FighterPOS malware strikes over 100 terminals in Brazil, captures info for 22K cards

By

Trend Micro warns that the threat could spread, as the sole perpetrator of the attacks is selling the malware.

'NewPosThings' malware evolves, malicious traffic traced to airports

'NewPosThings' malware evolves, malicious traffic traced to airports

By

Trend Micro believes that point-of-sale malware attackers will increasingly target travelers.

PCI Council updates penetration testing guidance for merchants

By

A recent Verizon study found that regular testing of security systems was a compliance weak point for merchants.

Verizon: PCI requirement to test security systems a compliance weak point for orgs

Verizon: PCI requirement to test security systems a compliance weak point for orgs

By

The percentage of companies compliant with PCI DSS Requirement 11 dropped to 33 percent last year, a Verizon report found.

Study: Fraud losses drop by $2 billion in 2014

Study: Fraud losses drop by $2 billion in 2014

By

A new study from Javelin Strategy & Research has found that both the fraud rate and the amount of money lost to fraud decreased this year.

Attempts made to access Toys"R"Us reward program profiles

By

Unnamed attackers attempted to gain access to some Toys"R"Us reward program profile in January, prompting the company to send email notifications and request users change their passwords.

Report: Target hackers steal card data from another parking company

By

Brian Krebs uncovered that a third parking service has been targeted by the same cybercriminals that hit Target and Home Depot.

Judge gives Home Depot till July to respond to class-action lawsuit allegations

By

A Georgia judge ordered Home Depot respond to class-action lawsuit allegations surrounding the retailer's major data breach this past summer by July 2015.

Contending with online thieves and fraudsters

As we all gear up for the holidays with plans to purchase any number of items online, cyberthieves too are gearing up with more and more creative ways to steal money, credentials and critical data from any number of organizations.

Asprox spammers use timely, but malicious, emails to trick holiday shoppers

By

Phishing emails are made to look like order confirmations from major retailers, like Best Buy, Target and Walmart, security firm Malcovery warns.

Credit unions urge Congress to enforce security standards for retailers

By

The National Association of Federal Credit Unions is asking Congress to establish national data breach and notification standards for retailers.

DHS, FBI sound alert on holiday cyber scams

By

The FBI and Homeland Security's US-CERT team have both warned that online scams, taking advantage of the holiday shopping frenzy, will be plentiful this season.

Backoff infections spike 33 percent at Q4 start, more variants surface

By

Damballa observed the spike in infections, which followed a Backoff peak in Q3.

Report: Dutch gov't OKs Drinkman extradition to U.S.

By

Vladimir Drinkman, who was charged for his involvement in the Heartland breach, is currently in the Netherlands.

Affected by breaches, consumers ready for more intensive security measures

Affected by breaches, consumers ready for more intensive security measures

By

A new study found that consumers are becoming more aware of security procedures at retailers after breaches have dominated this year's news cycle.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US