Magecart group compromises customer ratings tool, affecting 'hundreds' of online stores

RiskIQ says certain factors limited the scope of this compromise, and there are lessons learned as to how to avoid it.

financial news

Pacific Northwest burger chain hit by FIN7

by Greg Otto • 3 weeks ago

Northwest U.S. fast food chain Burgerville revealed Wednesday that its customers' credit and debit card information was stolen by the international cybercrime group known as FIN7.

Equifax fined maximum penalty under 1998 UK data protection law

by Greg Otto • 1 month ago

The fine amounts to $664,000.

Magecart strikes again, this time at electronics retailer Newegg

by Greg Otto • 1 month ago

Researchers say the hacking group is getting better at finding ways to leverage faults in Javascript to hide and carry out breaches of credit card payment systems.

Researchers implicate online card-skimming group in British Airways hack

by Sean Lyngaas • 1 month ago

The same group may have been behind the ticketmaster breach in the UK.

U.S. extradites Russian accused in hack of JPMorgan Chase

by Patrick Howell O'Neill • 2 months ago

Andrei Tyurin's successful extradition is major milestone in an investigation spanning four years.

'Cobalt Group' launches new campaign against banks in Romania, Russia

by Sean Lyngaas • 2 months ago

An infamous hacking group is back to aggressively targeting banks less than a month after the Justice Department announced the arrest of three of its high-level members, according to new research.

Dixons Carphone: 2017 data breach affected 10 million 

by Ryan Duffy • 3 months ago

European electronics and telecom retailer Dixons Carphone said a breach of its systems last year could have resulted in attackers accessing roughly 10 million records, including customers’ personal data.

Malware-ransomware combo campaign hits North American inboxes

by Sean Lyngaas • 3 months ago

Popular credential-stealing malware AZORult has been paired with the Hermes ransomware to send thousands of emails to computer users in North America, according to new research.

Economic cyber-espionage is here to stay, U.S. counterintelligence report says

by Sean Lyngaas • 3 months ago

The report from ODNI's counterintelligence agency also raises concerns about the software supply chain as an attack vector.

Equifax CISO Jamil Farshchi's three-act, 'shared fate' security plan

by Greg Otto • 3 months ago

In an exclusive interview with CyberScoop, Farshchi describes how he wants to secure Equifax and instill the idea that cybersecurity doesn't fall to the IT division.

Former Equifax employee charged with insider trading over 2017 data breach

by Patrick Howell O'Neill • 4 months ago

It's the second time a former employee has been charged with selling off stock prior the public announcement of the company's massive data breach.

North Korea to blame for string of Latin America bank hacks, insiders say

by Chris Bing • 4 months ago

A string of devastating bank hacks across Latin America all carry North Korean fingerprints, according to three people with knowledge of the matter.

FBI announces arrest of 74 email fraudsters on three continents

by Sean Lyngaas • 4 months ago

The FBI on Monday announced the arrest of 74 people across three continents for hijacking bank transfers using email fraud.

Claroty raises $60 million to protect industrial networks from 'perfect storm' of cyberthreats

by Zaid Shoorbajee • 4 months ago

Claroty looks to protect operational technology networks from cyberthreats as industrial control systems become increasingly connected and targeted.

As ransomware hobbled Atlanta, banks drilled for next iteration of attacks

by Sean Lyngaas • 5 months ago

The exercise, which assembled 18 financial institutions and the industry’s threat-sharing center, simulated a “WannaCry-like” ransomware attack.

Hackers steal PII and payment info of thousands of California residents in company breach

by Zaid Shoorbajee • 5 months ago

The Social Security numbers and payment information of 5,678 California residents may be at risk in an incident involving the Corporation Service Company.

Inside 'Project Indigo,' the quiet info-sharing program between banks and U.S. Cyber Command

by Chris Bing • 5 months ago

CyberScoop has uncovered "Project Indigo," a covert agreement between The Financial Services Information Sharing and Analysis Center and U.S. Cyber Command that allows for the sharing of threat information.

Tanium gets $5 billion valuation after $175 million investment

by Zaid Shoorbajee • 5 months ago

The new funding reinforces Tanium’s position as the most well-funded cybersecurity startup.

A software vulnerability could have been used to siphon over $15 million from Mexican banks

by Mark Satter • 5 months ago

Over $15 million was stolen from Mexican banks this month by thieves who created fake money orders and phony accounts to withdraw funds from dozens of branches.

European Central Bank proposes framework to strengthen financial system’s defenses

by Mark Satter • 6 months ago

The European Central Bank (ECB) wants to make penetration testing a regular practice.

TwitterFacebookLinkedInRedditGoogle Gmail