Catalin Cimpanu reports: A security researcher has published today details about four zero-day vulnerabilities impacting an IBM security product after the company refused to patch bugs following a private bug disclosure attempt. The bugs impact the IBM Data Risk Manager (IDRM), an enterprise security tool that aggregates feeds from vulnerability scanning tools and other risk management…
Category: Business Sector
UniCredit Hackers Try to Sell Employee Data on Cyber-Crime Forums
Daniele Lepido and Sonia Sirletti report: Data on about 3,000 UniCredit SpA employees was put up for sale on cyber-crime forums after a hacking attack. The data went on sale on April 19 and contained what the hacker said was information on UniCredit workers, including emails, phone numbers, encrypted passwords and names, Telsy, a unit…
CISI payment breach leaves members vulnerable to fraud
Robbie Lawther reports: The Chartered Institute for Securities and Investments (CISI) has confirmed that some of its members may have had their financial information stolen after “malicious code” was inserted on its website. It comes after the professional body was made aware that members were noticing fraudulent activity on their credit/debit cards after a payment…
PrimoHoagies Notifies Customers of Data Security Incident
Press release: WESTVILLE, N.J. April 17, 2020 /PRNewswire/ — PrimoHoagies Franchising, Inc. (“PrimoHoagies” or the “Company”) announced today that it had suffered a data security incident, enabling unauthorized parties to access payment card information. Immediately upon discovering this, PrimoHoagies worked with industry-leading cybersecurity firms to assist with an investigation. The Company also contacted payment card brands so…
Cognizant attacked by Maze ransomware
Late last night, word started circulating that Cognizant had been attacked by Maze Team. Today, the attack was reported by BleepingComputer and confirmed by Cognizant. In a statement on their website, the New Jersey-headquartered multinational corporation writes: Cognizant can confirm that a security incident involving our internal systems, and causing service disruptions for some of…
Ca: Leading accounting firm MNP hit with cyberattack
Lawrence Abrams reports: A leading accounting firm in Canada forced a company-wide shutdown of their systems after getting hit with a cyberattack last weekend, BleepingComputer has learned. Canadian accounting firm MNP’s systems were impacted last weekend in what BleepingComputer was told was a ransomware attack. Read more on BleepingComputer.