CORRECTION and UPDATE: SLC Security, who originally claimed that Valve had been owned, has updated their post with the following statement: FRAUD ALERT: Domain’s (sic) posing as Valve Corp (Russian) UPDATE: We were contacted by the hosting provider Akamai and advised that the domain in the capture below is actually an imposter out of Russia….
Category: Malware
FBI alerts U.S. companies of malware following Sony breach
Maritza Santillan reports: The Federal Bureau of Investigation (FBI) issued an alert to U.S. companies on Monday warning them of malicious software following the recent large-scale network disruption at Sony Pictures Entertainment. According to Reuters, the five-page confidential alert included details of how Sony’s attack was successfully carried out, as well as advice on how…
IL: Credit card data stolen at city garages; remote access tool used to inject malware
Bill Smith reports: Parking service provider SP Plus says its equipment at Evanston’s three downtown municipal parking garages was hacked to steal credit card data from drivers. In a statement issued today, SP Plus says that the three Evanston garages, along with 10 more in Chicago and four in other cities, were affected by the security…
Simms Fishing Products notifies customers of payment card compromise
Simms Fishing Products in Bozeman, Montana is notifying customers after their hosting service discovered that malware had been inserted that seemingly captured customers’ name, address, and credit card information, including the credit card number, expiration date, and CVV2 code. Cards use for purchases made between September 1 and November 6, 2014 may have been compromised. Simms notes that their unnamed website…
Regin: Top-tier espionage tool enables stealthy surveillance
Symantec reports: An advanced piece of malware, known as Regin, has been used in systematic spying campaigns against a range of international targets since at least 2008. A back door-type Trojan, Regin is a complex piece of malware whose structure displays a degree of technical competence rarely seen. Customizable with an extensive range of capabilities…
Staples Confirms POS Malware Attack
Mathew J. Schwartz reports: Staples is now confirming that there was a malware-related breach, although it’s offering scant additional information. “We are continuing to investigate a data security incident involving an intrusion into some of our retail point-of-sale and computer systems,” Staples spokesman Mark Cautela tells Information Security Media Group. “We believe we have eradicated…