RiskIQ – Computer Security Articles

Breach at Cloud Solution Provider PCM Inc.

June 27, 2019 admin Cloud Hopper, data breaches, gift card fraud, Insight Enterprises, microsoft, office365, PCM Inc., RiskIQ, Wipro, Wipro breach

Credit to Author: BrianKrebs| Date: Thu, 27 Jun 2019 17:00:38 +0000

A digital intrusion at PCM Inc., a major U.S.-based cloud solution provider, allowed hackers to access email and file sharing systems for some of the company’s clients, KrebsOnSecurity has learned.

MalwareBytes Security

Web skimmers compete in Umbro Brasil hack

November 20, 2018 admin brasil, credit card, criminals, exfiltration, hack, JSON, Magecart, RiskIQ, skimming, Threat analysis, umbro, web

Credit to Author: Jérôme Segura| Date: Tue, 20 Nov 2018 16:51:57 +0000

In this web skimming match between two Magecart groups, there can only be one winner.

Categories:

Tags: brasil credit card exfiltration hack JSON Magecart RiskIQ skimming umbro web

(Read more…)

The post Web skimmers compete in Umbro Brasil hack appeared first on Malwarebytes Labs.

Independent Krebs

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

November 13, 2018 admin A Little Sunshine, Abuse.ch, Flashpoint, instagram, Julie Randall, Latest Warnings, Magecart, RiskIQ, Shadowserver, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 13 Nov 2018 16:26:39 +0000

If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, neglected domains have been getting scooped up by crooks who use them to set up fake e-commerce sites that steal credit card details from unwary shoppers.

Independent Krebs

Who’s In Your Online Shopping Cart?

November 4, 2018 admin @breachmessenger, 46.161.40.49, A Little Sunshine, AIDE, Breadcrumbs, British Airways breach, formjacking, Magecart, Newegg breach, RiskIQ, Symantec, The Coming Storm, Tripwire, watchdo.gs, Web Fraud 2.0, wewatchyourwebsite.com, window.atob, Yonathan Klijnsma

Credit to Author: BrianKrebs| Date: Sun, 04 Nov 2018 19:10:06 +0000

Crooks who hack online merchants to steal payment card data are constantly coming up with crafty ways to hide their malicious code on Web sites. In Internet ages past, this often meant obfuscating it as giant blobs of gibberish text that is obvious even to the untrained eye. These days, a compromised e-commerce site is more likely to be seeded with a tiny snippet of code that invokes a hostile domain which appears harmless or that is virtually indistinguishable from the hacked site’s own domain.

Independent Krebs

Trump’s Dumps: ‘Making Dumps Great Again’

May 25, 2017 admin dark web, DomainTools.com, Home Depot breach, Magento, McDumpals, OpenCart, Other, Powerfront, rescator, RiskIQ, rudneva-y@mail.ua, Sally Beauty breach, target breach, Tor, Trump's-Dumps, U.S. Secret Service, U.S. Senate GOP Senatorial Committee hack

Credit to Author: BrianKrebs| Date: Fri, 26 May 2017 04:45:24 +0000

It’s not uncommon for crooks who peddle stolen credit cards to seize on iconic American figures of wealth and power in the digital advertisements for these shops that run continuously on various cybercrime forums. Exhibit A: McDumpals, a hugely popular carding site that borrows the Ronald McDonald character from McDonald’s and caters to bulk buyers. Exhibit B: Uncle Sam’s dumps shop, which wants YOU! to buy American. Today, we’ll look at an up and coming credit card shop called Trump’s-Dumps, which invokes 45’s likeness and promises to “make credit card fraud great again.”