Retail | SC Media

Retail

Flowers

Bloom is off the rose: Canadian 1-800-FLOWERS operation discloses four-year breach

By

The Canadian retail operations of 1-800-FLOWERS has disclosed a four-year data breach affecting customers who purchased goods on its website, warning that payment card data was exposed. The company 1873349 Ontario, Inc., which owns www.1800Flowers.ca, acknowledged the incident in a breach notification to impacted consumers, which was filed with the California attorney general’s office on Nov. 30.…

Proposed law would outlaw ‘Grinch bots’ that snatch up toys for resale

By

Far beyond Whoville, in the U.S., our nation,The House and the Senate introduced legislation.The bill makes illegal the use of “Grinch bots”To buy up all the toys, disappointing young tots. Okay, enough with the Suessing… On Nov. 16, House Rep. Paul Tonko D, N.Y., submitted H. R. 7160, aka the “Stopping Grinch Bots Act of 2018.”…

Consumers willing to be fleeced for the right Cyber Monday deal

By

The official start of the holiday shopping is here and even though cybersecurity firms are issuing warnings to help protect online shoppers many consumers may ignore safety advice if it stops them from saving money. A variety of scams have already been spotted, with cybercriminals creating fake store websites, launching shopping-related phishing campaigns and running…

Amazon Logo

Amazon website glitch exposes customer data

By

Amazon customer service reportedly sent an unknown number of customers an email today, warning that a technical error on its website had exposed their data. Details on incident are scant, as Amazon’s disclosure was rather vague in details, according to several outlets that covered the development. “Hello, We’re contacting you to let you know that…

Top online retailers rated for cybersecurity practices

By

With Black Friday and Cyber Monday looming only eight days away, and Magecart’s malware being spotted in more than a few retailer point-of-sale systems, consumers should be aware of which online retailers are the best at protecting their customer’s data. To come up with a definitive list LastPass tested the websites of the top 10…

The many faces of Magecart: Report profiles groups behind card-skimming threat

By

Magecart, the e-commerce payment card-skimming threat that has recently victimized Ticketmaster, British Airways, Newegg and other notable companies, is primarily comprised of six major active cybercriminal groups, according to a new joint research report. All of these groups use a version the same skimmer toolset, but they rely on different strategies and in some cases have…

Nordstrom data breach exposes employee information

By

High-end retailer Nordstrom is in the process of notifying its employees their data may have been compromised in a breach. The Seattle Times reported worker names, Social Security numbers, dates of birth, checking account and routing numbers, salaries and additional information is included in the breach notification, which is being sent by email or being…

Oracle security updates contains 45 critical-rated vulnerability

By

Oracle released a massive update containing 301 items with almost 15 percent of them receiving a CVSS v3.0 Base Score of 9.8 or critical rating indicating that immediate patching is needed. The critical updates were spread across a wide variety Oracle products many of which if not patched could lead to remote exploits. Oracle’s Retail…

Burgerville discloses year-long data breach, courtesy of FIN7 cybergang

By

Add fast-casual restaurant chain Burgerville to the list of retail and hospitality companies victimized by the Eastern European cybercrime group FIN7. The Vancouver, Wash.-based restaurant operator disclosed in an online security alert and FAQ page that it was infected with malware by FIN7, aka the Carbanak Group, resulting in a data breach that compromised customers’…

Next post in Cybercrime