A new analysis advises security teams on what they should know about the underground payment card seller. Payment card data is among the most widely distributed information on the Dark Web. The breadth of data for sale in underground marketplaces can prove helpful to security teams, who can analyze this information and combine it with
Midwestern U.S. retailer Hy-Vee disclosed investigation findings this week from a data breach announced in mid-August impacting millions of customers utilizing its food and service point-of-sale (PoS) transaction machines. The investigation identified the operation of malware designed to access payment card data from cards used on PoS devices at certain Hy-Vee fuel pumps, drive-thru coffee
Thousands of customers’ credit card numbers, MoviePass card numbers, and sensitive data were left in an unprotected database. MoviePass, a struggling film subscription service, has another problem on its plate: Security researchers discovered an unsecured company database exposing thousands of customers’ personal and payment information. The database has since been taken offline. Compromised data includes
New research on password management tools identifies the relative strengths and weaknesses of 12 competing offerings.
The phrase “password management” engenders similar reactions from both those responsible for cybersecurity and the individuals who must use passwords. It’s a “trying necessity.” To address the issues associated with password management, there is a good selection of
Enterprise VulnerabilitiesFrom DHS/US-CERT’s National Vulnerability Database CVE-2018-7201PUBLISHED: 2019-05-22 CSV Injection was discovered in ProjectSend before r1053, affecting victims who import the data into Microsoft Excel. CVE-2018-7803PUBLISHED: 2019-05-22
A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex TriStation Emulator V1.2.0, which could cause the emulator to crash when sending a specially
Financial services firms saw upticks in credential leaks and credit card compromise as cybercriminals go where the money is. More than one-quarter of all malware attacks target the financial services sector, which has seen dramatic spikes in credential theft, compromised credit cards, and malicious mobile apps as cybercriminals seek new ways to generate illicit profits.
Criminals using just one line of malicious code have successfully compromised at least seven e-commerce sites and potentially stolen payment card data belonging to thousands of customers of the online stores. Six of the e-commerce