Unwrapping Some of the Holiday Season’s Biggest Scams
Even with the holidays in full swing, scammers won’t let up. In fact, it’s high time for some of their nastiest cons as people travel, donate to charities, and simply try to enjoy their time with friends and family. Unfortunate as it is, scammers see this time of year as a tremendous opportunity to profit. […] more…FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops
We discovered that the online credit card skimming attack known as Magecart or E-Skimming was actively operating on 3,126 online shops. Our data shows that the attack started on September 7, 2019. All of the impacted online shops are hosted on the cloud platform of the e-commerce service provider “Volusion,” one of the top e-commerce […] more…New Magecart Attack Delivered Through Compromised Advertising Supply Chain
by Chaoying Liu and Joseph C. Chen On January 1, we detected a significant increase in activity from one of the web skimmer groups we’ve been tracking. During this time, we found their malicious skimming code (detected by Trend Micro as JS_OBFUS.C.) loaded on 277 e-commerce websites providing ticketing, touring, and flight booking services as […] more…Are Your Online Mainframes Exposing You to Business Process Compromise?
by Roel Reyes (Senior Threat Researcher) Legacy mainframes are still used by enterprises to handle big data transactions across a range of industries, from financial institutions, telecoms, and internet service providers (ISPs) to airlines and government agencies. Why are they still in use? As the saying goes: “if it ain’t broke, don’t fix it”. But […] more…More information
- Identity Services Production Application Servers Maintenance
- Flash Player Critical Vulnerability Exploited in IE for Windows Only
- Vulnerability Provided Access to Toyota Supplier Management Network
- Qualcomm hints at (slight) 5G iPhone 12 delay
- The Upload: Your tech news briefing for Thursday, February 12
- AT&T Says Data on 73 Million Customers Leaked on Dark Web
- Twitch Turns 10, and the Creator Economy Is in Its Debt
- Researcher skepticism grows over badBIOS malware claims
- Firefox ban on SHA-1 dropped after many locked out of HTTPS sites
- Resolved: Scheduled Maintenance – Engineering Services VoIP LAN