A naukri.com initiative
Cyber Crime News
Securityaffairs
2w
155
Image Credit: Securityaffairs
Smishing on a Massive Scale: ‘Panda Shop’ Chinese Carding Syndicate
- Resecurity discovered a new smishing kit called 'Panda Shop,' similar to tactics used by the Smishing Triad but with enhanced features and templates.
- The Chinese cybercriminal group, known as the Smishing Triad, has evolved its operations, becoming more sophisticated in targeting consumers globally.
- The 'Panda Shop' smishing kit identified by Resecurity is being used to steal credit card and personal information via Google Wallet and Apple Pay.
- Chinese cybercriminals exploit various delivery methods like Google RCS, Apple iMessage, and SMS gateways to send up to 2,000,000 smishing messages daily, raising concerns about the scale of potential victims.
Read Full Article
9 Likes
Medium
2w
47
Image Credit: Medium
Retail Cyberattacks and the Privacy Paradox: Why Consumers Still Click ‘Buy’
- Retailers are increasingly being hacked, leading to compromised consumer data and in-store disruptions.
- Despite the frequency of cyber attacks, many consumers exhibit 'privacy paradox', expressing concern about data privacy but not taking sufficient protective measures.
- Younger consumers, particularly Gen Z, show 'privacy fatigue', resulting in inconsistent protective behaviors even after data breaches.
- There is a need for retailers to prioritize transparency, as proactive and honest communication post-data breach can help retain consumer trust and loyalty.
Read Full Article
2 Likes
Securityaffairs
2w
112
Image Credit: Securityaffairs
Kelly Benefits December data breach impacted over 400,000 individuals
- Kelly Benefits data breach impact larger than initially believed.
- Initially estimated to impact nearly 264,000 individuals, the breach now affects over 400,000.
- Sensitive personal data such as names, SSNs, medical, and financial data stolen.
- Kelly Benefits notifying impacted individuals, investigation ongoing.
Read Full Article
6 Likes
TechDigest
2w
317
Image Credit: TechDigest
M&S ‘pure chaos’ after cyber attack, Skype shuts down today
- Marks and Spencer (M&S) faces challenges in recovering from a severe cyber attack with ongoing disruptions, including suspension of online orders and recruitment halt.
- Due to the cyber attack, M&S has been forced to suspend some meal deal offers in stores, disrupting stock availability and impacting shoppers.
- National Cyber Security Centre (NCSC) warns retailers like M&S, Co-op, and Harrods of cyber attacks impersonating IT help desks, urging organizations to review their security measures.
- Skype is shutting down after 22 years, marking the end of its era as a pioneer in internet communication, while usage of Elon Musk's Starlink soars during telecoms network vulnerabilities in Spain and Portugal.
Read Full Article
19 Likes
Silicon
2w
346
Image Credit: Silicon
NCSC Warns UK Retailers After Spate Of Cyberattacks
- UK retailers are being warned by the NCSC to strengthen their cyber defenses following a series of cyberattacks on high street retailers.
- Major retailers like Marks & Spencer, Co-op, and Harrods have all been targeted by cyberattacks, leading to disruptions in their online operations and IT systems.
- The NCSC is working with affected organizations to understand the nature of these attacks and provide expert advice to enhance cyber defenses.
- NCSC CEO Dr. Richard Horne emphasizes the importance of organizations implementing appropriate measures to prevent, respond, and recover from cyberattacks, urging leaders to follow the guidance on the NCSC website.
Read Full Article
20 Likes
Securityaffairs
2w
277
Image Credit: Securityaffairs
Sansec uncovered a supply chain attack via 21 backdoored Magento extensions
- Supply chain attack via 21 backdoored Magento extensions affected 500–1,000 e-stores, including a $40B multinational e-store.
- Researchers at Sansec uncovered a coordinated supply chain attack where a backdoor was hidden in 21 applications, lingering undiscovered for 6 years.
- The malicious code injection was recently discovered after threat actors compromised e-commerce servers through the backdoored extensions.
- Impacted vendors include Tigren, Magesolution (MGS), and Meetanshi, with varied responses received when contacted by Sansec.
Read Full Article
16 Likes
Securityaffairs
2w
199
Image Credit: Securityaffairs
US authorities have indicted Black Kingdom ransomware admin
- 36-year-old Yemeni man indicted in the U.S. for 1,500 attacks on Microsoft Exchange servers as an admin of Black Kingdom ransomware.
- FBI investigating the case with the help of the New Zealand Police.
- The man demanded ransom payments of $10,000 in Bitcoin from the victims and is believed to be residing in Yemen.
- If convicted, the man faces up to five years in federal prison for each charge related to deploying Black Kingdom ransomware on vulnerable Exchange mail servers.
Read Full Article
12 Likes
Siliconangle
2w
338
Image Credit: Siliconangle
Main Line Health battles healthcare hackers with zero-trust strategy
- Healthcare systems are facing a surge in cyberattacks, with nearly 400 reported attacks in the first three quarters of 2024 and over 1.2 million patients impacted by data breaches in February 2025.
- Main Line Health and technology partners like Elisity Inc. are leveraging advanced tools to mitigate breaches and safeguard critical systems against evolving threats.
- Technological challenges in securing healthcare environments, like complex IoT connectivity, are being addressed by focusing on least privilege access and zero-trust policies.
- Main Line Health emphasizes the importance of involving clinical operations staff in cybersecurity measures to ensure uninterrupted patient care delivery.
Read Full Article
20 Likes
Securityaffairs
2w
325
Image Credit: Securityaffairs
Malicious Go Modules designed to wipe Linux systems
- Researchers discovered 3 malicious Go modules containing hidden code to wipe a Linux system's main disk, making it unbootable.
- The malware-laced modules fetch destructive payloads to execute a shell script, permanently destroying data on the primary disk.
- Attackers exploit Go ecosystem's decentralized nature to create confusion, making it hard for developers to distinguish between legitimate and malicious modules.
- Experts emphasize the importance of strong supply chain security and recommend proactive code audits and continuous monitoring to combat such sophisticated threats.
Read Full Article
19 Likes
Securityaffairs
2w
217
Image Credit: Securityaffairs
Security Affairs newsletter Round 522 by Pierluigi Paganini – INTERNATIONAL EDITION
- Rhysida Ransomware gang claims hack of the Government of Peru & DragonForce group claims data theft after Co-op cyberattack.
- U.S. CISA adds multiple new vulnerabilities to its Known Exploited Vulnerabilities catalog, including Yii Framework, Commvault Command Center, SonicWall SMA100, and Apache HTTP Server flaws.
- Luxury department store Harrods and Canadian electric utility Nova Scotia Power suffer cyberattacks. Pro-Russia hacktivist group targets Dutch organizations.
- Various cybersecurity incidents reported, including phishing domains associated with LabHost PhaaS platform, critical vulnerabilities actively exploited in the wild, and emergence of new malware strains targeting different sectors.
Read Full Article
13 Likes
Securityaffairs
2w
396
Image Credit: Securityaffairs
Rhysida Ransomware gang claims the hack of the Government of Peru
- The Rhysida Ransomware gang claims responsibility for hacking the Government of Peru through the Gob.pe platform.
- The group has published images of documents allegedly stolen from the Peruvian government platform and is demanding a ransom of five bitcoins within seven days.
- Rhysida ransomware group has been active since May 2023, targeting numerous organizations across various sectors, including education, healthcare, manufacturing, information technology, and government.
- In response to the attacks, the FBI and CISA issued a joint Cybersecurity Advisory warning about Rhysida ransomware and providing information on tactics, techniques, and procedures associated with the group.
Read Full Article
23 Likes
Securityaffairs
2w
243
Image Credit: Securityaffairs
DragonForce group claims the theft of data after Co-op cyberattack
- Hackers claiming to be DragonForce revealed that they stole major customer and employee data from the recent Co-op cyberattack, providing proof to the BBC.
- Initially, Co-op stated there was no evidence of customer data compromise, but later confirmed that current and past members' data was accessed by threat actors.
- The attackers accessed Co-op's internal Teams, leaked staff credentials, and obtained 10,000 customer records containing personal details like names, addresses, emails, and phone numbers.
- DragonForce group, also responsible for attacks on M&S, claimed to have information on 20 million Co-op members, indicating potential risk to Co-op's membership scheme.
Read Full Article
14 Likes
Guardian
2w
396
Image Credit: Guardian
Clothing shortages, food waste and millions lost each day: inside the M&S cyber-attack chaos
- Marks & Spencer experienced a sustained cyber-attack over Easter weekend, resulting in significant financial losses and operational disruptions.
- The retailer has halted online orders, faces stock management challenges, and is unable to provide full service to customers.
- The chief executive has called for in-store shopping as online system restoration may take weeks to months.
- Despite initial disruptions, M&S has resumed certain services such as contactless payments and gift card acceptance.
- The cyber-attack has impacted food deliveries to Ocado and led to food waste due to IT-related pricing issues.
- The retailer's flagship store showed stock shortages in both groceries and clothing, prompting in-store visits.
- Analysts estimate a substantial profit loss for M&S, with ongoing impact expected to reach £15m weekly.
- Although customer data security remains intact, the cyber-attack has significantly impacted operations and profits.
- M&S is working to restore systems, but the ransomware incident has already affected its annual profits and market value decline.
- The National Cyber Security Centre is involved in the investigation, emphasizing the need for robust cybersecurity measures in the retail sector.
- Rival retailers are on high alert following cyber-attacks on M&S, Co-op, and Harrods, prompting a reevaluation of their security protocols.
Read Full Article
23 Likes
TechDigest
2w
4
Image Credit: TechDigest
Co-op cyber attack affects customer data, company admits
- A group of cyber criminals, known as DragonForce, revealed a severe hack on Co-op, contradicting the company's statements.
- Co-op confirmed that hackers accessed data of a significant number of current and past members, including personal details.
- The hackers claim to possess private information of 20 million Co-op membership holders, which the company has not confirmed.
- Government issues warnings to businesses to prioritize cybersecurity, while Co-op customers are advised to monitor accounts for suspicious activity.
Read Full Article
Like
Siliconangle
2w
26
Image Credit: Siliconangle
Google Cloud and Broadcom alliance shapes the network security roadmap for 2025 and beyond
- Google Cloud and Broadcom have joined forces to shape the network security roadmap for 2025 and beyond, emphasizing the importance of cybersecurity at every level of technology.
- Robert Sadowski from Google Cloud and Jason Rolleston from Broadcom discussed the AI-driven future of network security during the RSAC 2025 Conference.
- The collaboration focuses on offering innovative security capabilities through Google Cloud WAN, a globally distributed backbone that enables Broadcom to deploy security solutions at scale.
- By leveraging AI, Google Cloud and Broadcom aim to provide automated detection, advanced web isolation, and adaptive policy enforcement without compromising performance.
Read Full Article
1 Like
For uninterrupted reading, download the app