Brian Krebs reports: Sources at nearly a half-dozen banks and credit unions independently reached out over the past 48 hours to inquire if I’d heard anything about a data breach at Arby’s fast-food restaurants. Asked about the rumors, Arby’s told KrebsOnSecurity that it recently remediated a breach involving malicious software installed on payment card systems at hundreds of…
Month: February 2017
Hackers Using RDP Attacks to Install CRYSIS Ransomware
How many times do folks need to be told to disable Remote Desktop Protocol (RDP) if it’s not necessary and in use? As Ionut Arghire reports,here’s another reason if you still haven’t addressed the risks to your security. CRYSIS, a ransomware family that emerged last year, is being distributed via Remote Desktop Protocol (RDP) brute…
Hacker steals 83,000 accounts from UPI news agency
Patrick O’Neill reports: A hacker is selling a database supposedly containing 83,000 compromised accounts from UPI.com, the website of the 110-year-old American news agency United Press International. After being contacted by CyberScoop, UPI alerted its entire email subscriber base Tuesday and removed login pages and entire sections of its website. Read more on CyberScoop.
Maryland Bill Introduces Criminal, Civil Penalties for Ransomware
Jacob Taylor reports: A bill that introduces steep penalties for the perpetrators of ransomware attacks, like the one that disabled the network of several Maryland hospitals last year, is making its way through the Maryland legislature. The bill defines ransomware attacks as felonies that would carry a penalty of up to 10 years in prison…
Mag publisher Future stored your FileSilo passwords in plaintext. Then hackers hit
Shaun Nichols reports: UK magazine publisher Future’s FileSilo website has been raided by hackers, who have made off with, among other information, unencrypted user account passwords. FileSilo.co.uk is a website Future’s mag subscribers can log into to download materials, such as Photoshop templates and graphics, for tutorials published in its print titles. Future is responsible…
Loblaw, Canadian Tire respond to breach reports
Aleksandra Sagan reports: Loblaw is warning PC Plus rewards collectors to beef up their passwords after points were stolen from some members’ accounts. “We are treating this as a breach as individual member accounts were accessed and points were stolen,” said Kevin Groh, the company’s vice-president of corporate affairs and communication, in a statement. Meanwhile, Global News reported…