Unwrapping Some of the Holiday Season’s Biggest Scams
Even with the holidays in full swing, scammers won’t let up. In fact, it’s high time for some of their nastiest cons as people travel, donate to charities, and simply try to enjoy their time with friends and family. Unfortunate as it is, scammers see this time of year as a tremendous opportunity to profit. […] more…FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops
We discovered that the online credit card skimming attack known as Magecart or E-Skimming was actively operating on 3,126 online shops. Our data shows that the attack started on September 7, 2019. All of the impacted online shops are hosted on the cloud platform of the e-commerce service provider “Volusion,” one of the top e-commerce […] more…New Magecart Attack Delivered Through Compromised Advertising Supply Chain
by Chaoying Liu and Joseph C. Chen On January 1, we detected a significant increase in activity from one of the web skimmer groups we’ve been tracking. During this time, we found their malicious skimming code (detected by Trend Micro as JS_OBFUS.C.) loaded on 277 e-commerce websites providing ticketing, touring, and flight booking services as […] more…Are Your Online Mainframes Exposing You to Business Process Compromise?
by Roel Reyes (Senior Threat Researcher) Legacy mainframes are still used by enterprises to handle big data transactions across a range of industries, from financial institutions, telecoms, and internet service providers (ISPs) to airlines and government agencies. Why are they still in use? As the saying goes: “if it ain’t broke, don’t fix it”. But […] more…More information
- It’s Official: McAfee Breaks Away from Intel With New Logo
- Intel hits back at ARM with Avoton server chips
- Microsoft Internet Explorer CVE-2013-0087 Use-After-Free Remote Code Execution Vulnerability
- The end of MSN Messenger, the beginning of attacks
- News in brief: Witcher user details stolen; email chain generated 500m messages; Russians face treason charges
- Show us a better way than collecting metadata, NSA director says to critics
- Adobe Releases No ‘Patch Tuesday’ Updates
- NSA Publishes Cybersecurity Year in Review Report
- Here’s what Apple might announce at a spring event this March
- From Chasing Alerts to Hunting Threats: What Makes an Effective SOC is Evolving