Over the last six months, a recently discovered, highly prolific payment card-scraping campaign managed to infect more than 7,000 online stores running on the open-source Magento e-commerce software platform. In an Aug. 30 blog post, Dutch security researcher Willem de Groot reported that the operation involved online payment skimming malware called MagentoCore. Of the 7,339…
Researchers with CrowdStrike yesterday partially confirmed reports from the mysterious APT-hunting group Intrusion Truth, verifying several findings that allegedly draw connections between the threat group APT10 and a Chinese foreign intelligence agency. Over the previous two months, Intrusion Truth has issued multiple reports on the group, also known as Stone Panda, linking it to the Tianjin Bureau of China’s Ministry of State Security (MSS). In…
A newly discovered mobile malware implant nicknamed BusyGasper might leave a few Android users breathless, if they knew about the unusual set of features the spyware uses to snoop on them. In an Aug. 29 blog post, Kaspersky Lab researcher Alexey Firsh reports that BusyGasper has existed since at least May 2016. But there’s a good reason it’s…
Five million customer credit and debit cards offered for sale on the Joker’s Stash credit card marketplace, likely came from records stolen from Saks Fifth Avenue and Lord & Taylor sometime between May 2017 and their March 28 release by the hacking syndicate Fin7. “Based on the analysis of the available data, the entire network…
Hacking tools from the isolated, high-security network situated inside the CIA’s Center for Cyber Intelligence have allegedly been released by WikiLeaks which hopes to instigate conversation around the moral use of cyberweapons.
The vulnerabilities could be exploited to tamper with the in-flight display and steal financial credentials, and the research suggests an attacker could even worm into the wider network.
Real-life pirates—the swashbuckling kind, not digital thieves—are hacking into the systems of shipping companies in order to get a sneak preview of their cargo, allowing them to more efficiently target and raid ships.
Real-life pirates—the swashbuckling kind, not digital thieves—are hacking into the systems of shipping companies in order to get a sneak preview of their cargo, allowing them to more efficiently target and raid ships.
Real-life pirates—the swashbuckling kind, not digital thieves—are hacking into the systems of shipping companies in order to get a sneak preview of their cargo, allowing them to more efficiently target and raid ships.
An audit of the Security Operations Center (SOC) responsible for securing the U.S. Nuclear Regulatory Commission’s (NRC) network infrastructure reveals the SOC’s procedures are currently not optimized to meet many cyberthreats.
