Brian Krebs reports: Sources at nearly a half-dozen banks and credit unions independently reached out over the past 48 hours to inquire if I’d heard anything about a data breach at Arby’s fast-food restaurants. Asked about the rumors, Arby’s told KrebsOnSecurity that it recently remediated a breach involving malicious software installed on payment card systems at hundreds of…
Category: Business Sector
Hacker steals 83,000 accounts from UPI news agency
Patrick O’Neill reports: A hacker is selling a database supposedly containing 83,000 compromised accounts from UPI.com, the website of the 110-year-old American news agency United Press International. After being contacted by CyberScoop, UPI alerted its entire email subscriber base Tuesday and removed login pages and entire sections of its website. Read more on CyberScoop.
Mag publisher Future stored your FileSilo passwords in plaintext. Then hackers hit
Shaun Nichols reports: UK magazine publisher Future’s FileSilo website has been raided by hackers, who have made off with, among other information, unencrypted user account passwords. FileSilo.co.uk is a website Future’s mag subscribers can log into to download materials, such as Photoshop templates and graphics, for tutorials published in its print titles. Future is responsible…
Loblaw, Canadian Tire respond to breach reports
Aleksandra Sagan reports: Loblaw is warning PC Plus rewards collectors to beef up their passwords after points were stolen from some members’ accounts. “We are treating this as a breach as individual member accounts were accessed and points were stolen,” said Kevin Groh, the company’s vice-president of corporate affairs and communication, in a statement. Meanwhile, Global News reported…
Malware hit Hitachi Payments Services, 3.2 million cards affected
Press Trust of India reports: Hitachi Payments Services on Thursday accepted its systems were compromised by a sophisticated malware in mid-2016, that led to one of the biggest cyber security breaches in the country with 3.2 million cards affected and a scare over security of card-based transactions. The National Payments Corporation of India (NPCI) had…
While investigating W-2 phishing scam, company discovers they were scammed last year, too (Updated)
The 2017 W-2 Phishing Victims List continues to grow, and I’m not posting most of them as individual reports, but one news story involving Monarch Beverage Company in Indianapolis deserves special mention because as CBS reports: While investigating this incident, the company discovered the same thing happened in April 2016. A scammer posing as the…