Jai Vijayan reports: Memory-scraping tools that surreptitiously copy and export data from running processes have pretty much been the only malware that threat actors have used in recent years to steal credit and debit card data from Point-of-Sale (POS) systems. But that doesn’t mean that other options don’t exist. Security vendor SecureWorks this week said…
Category: Malware
‘Avalanche’ network dismantled in international cyber operation
From Europol, today: On 30 November 2016, after more than four years of investigation, the Public Prosecutor’s Office Verden and the Lüneburg Police (Germany) in close cooperation with the United States Attorney’s Office for the Western District of Pennsylvania, the Department of Justice and the FBI, Europol, Eurojust and global partners, dismantled an international criminal infrastructure platform known as…
Carleton U. hit by ransomware, students told to keep Windows PCs away
Iain Thomson reports: Carleton University in Ontario, Canada, has confirmed it has been hit by a ransomware infection that crippled some of the Windows machines on its main campus. Systems at the university started to go down on Tuesday, and its IT department reported that email, network drives and the central university student portal had…
MT: Bigfork school computers breached
Hilary Matheson reports: Bigfork School District will not submit to ransom demands after the district’s computer network was compromised over the weekend by ransomware. Information technology staff have been working to recover computer files and remove the malicious software, which encrypted and locked files from being opened. It’s often the case that ransomware is not…
Report holds Hitachi responsible for debit card data theft
It looks like I missed a breach report in October involving Hitachi Payment Systems, who initially denied any breach of their system. But now Nupur Anand reports that an interim forensics report has found that there was, in fact, a compromise involving malware: …. The breach is said to have occurred because there was malware…
So, just how were those MailChimp accounts hacked?
Graham Cluley writes: As I described yesterday in an article on the We Live Security blog, some MailChimp customers had their accounts hijacked, with the end result that their newsletter subscribers received a malicious email. […]A security researcher, who chooses to remain anonymous, contacted me telling me that he had a database of over 2,000 MailChimp usernames…