As reported by Reuters, Home Depot Inc, the largest U.S. home improvement retailer, on Tuesday reached a $17.5 million settlement to resolve a multistate probe into a 2014 data breach where hackers accessed payment card data belonging to 40 million customers. The settlement stemmed from a breach between April 10, 2014, and Sept. 13, 2014, affecting customers who used self-checkout terminals at its U.S. and Canadian stores. Hackers used a vendor’s user name and password to infiltrate Home Depot’s network, and deployed custom-built malware to access customers’ payment card information. The Atlanta-based retailer previously said at least 52 million people…
ISBuzz Team
With more commerce occurring online this year, and with the holiday season upon us, the Cybersecurity and Infrastructure Security Agency (CISA) reminds shoppers to remain vigilant. Be especially cautious of fraudulent sites spoofing reputable businesses, unsolicited emails purporting to be from charities, and unencrypted financial transactions.
It was reported that the UK’s bargain hunters spent £5.55 billion on Black Friday and Cyber Monday in 2019, a number which is predicted to rise to £5.98 billion for 2020. With COVID-19 still raging around us, this year’s sales will be even more of an online event than in normal times, leaving open the possibility of hackers targeting online shoppers. In 2019, there was a reported 63% spike in malware around Black Friday and Cyber Monday; It’s imperative that shoppers are aware of these threats so not as to part unnecessarily with their hard-earned cash. AT&T Alien Labs has…
Cybersecurity experts commented below to warn the public about cyber threats on Black Friday and how to mitigate against these threats.
Peatix sent an email to its users that their information has been improperly assessed or obtained. Peatix is an event organizing platform, currently ranked among the Alexa Top 3,500 most popular sites on the internet.
Ahead of this year’s Computer Security Day, which takes place on 30th November, we reached out to a number of experts and leaders to provide comments and advice to security leaders for this day. The day is designed to raise awareness of the importance of good cybersecurity practices within organisations and to promote best practices. This year, there is a focus on bringing together international and local IT and security professionals to share their experiences, acquire knowledge and gain an understanding to safeguard their organisation’s most valuable asset – information.
It was reported today that a hacker has posted a list of one-line exploits to steal VPN credentials from almost 50,000 Fortinet VPN devices. Present on the list of vulnerable targets are domains belonging to high street banks and government organizations from around the world.
Following the news that hackers tricked GoDaddy employees into handing ownership or control of multiple cryptocurrency services’ web domains, the CEO offers the following comment:
Researchers have discovered a possible credential stuffing operation whose origins are unknown, but that affected online users who have Spotify accounts. The researchers uncovered an Elasticsearch database containing over 380 million records, including login credentials and other user data being validated against the Spotify service.
TikTok patched a reflected XSS security flaw and a high severity bug that were identified in August and that could have led to potential account takeover, impacting the firm’s web domain.