Adobe Patches Zero-Day Flaw in Flash Player

Adobe Patches Zero-Day Flaw in Flash Player

Adobe Systems fixed a critical vulnerability in Flash Player that was publicly disclosed by a researcher earlier this month. The vulnerability, tracked as CVE-2018-15981, is a type confusion issue that can lead ...
Security Boulevard
Magecart-Style Website Supply Chain Attacks

Defend Against Magecart-Style Website Supply Chain Attacks

We’ve seen an acceleration of attacks from Magecart threat actors and their JavaScript credit card and personal information-skimming attacks. In the past two months, British Airways, Feedify, the ABS-CBN Store, the UAAP ...
Security Boulevard

20% of MageCart-compromised merchants get reinfected within days

MageCart, the notorious malware that has been haunting online stores by stealing payment card details from online shoppers at checkout, is reinfecting the same websites time and time again. The post 20% ...
That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, ...
Who’s In Your Online Shopping Cart?

Who’s In Your Online Shopping Cart?

Crooks who hack online merchants to steal payment card data are constantly coming up with crafty ways to hide their malicious code on Web sites. In Internet ages past, this often meant ...
Best Practices for Data Security

New Windows Zero-Day Flaw Dropped on Twitter

A new vulnerability affecting Windows 10 has been disclosed on Twitter before being patched and it allows attackers to delete system files or to replace sensitive libraries. The vulnerability is located in ...
Security Boulevard
Rethinking Cybersecurity About Data

Magecart Injects Skimmer Code in Customer Rating Widget

The groups of attackers who specialize in injecting payment card skimmer code called Magecart into online shops managed to compromise a third-party customer rating plugin called Shopper Approved that’s used by thousands ...
Security Boulevard

Mobile Phone Call Scams, Pegasus Mobile Spyware, Newegg Data Breach – WB35

This is the Shared Security Weekly Blaze for September 24, 2018 sponsored by Security Perspectives – Your Source for Tailored Security Awareness Training and Assessment Solutions and Silent Pocket. This episode was ...
Yahoos Data Breach Settlement

Online Retailer Newegg Hit by Magecart Card Skimming Gang

The same attackers believed to be responsible for the recent breach of British Airways customer payment data have injected card skimming code into the site of U.S. online retailer Newegg.com. The code ...
Security Boulevard
Magecart Hackers Stole Customers Payment Card Data from Newegg

Magecart Hackers Stole Customers Payment Card Data from Newegg

The infamous criminal collective known as Magecart has successfully infiltrated the Newegg site and stole the stored payment card details stored by the company’s customers. This is a critical breach into the ...
Loading...