Point-of-sale (PoS) solutions provider North Country Business Products, whose products are used at over 6,500 locations across the United States, recently disclosed a data breach that resulted in the exposure of payment card data.
Category Archives: Fraud & Identity Theft
Wendy’s Reaches $50 Million Settlement With Banks Over Data Breach
US fast food restaurant chain Wendy’s announced recently that it has reached a settlement with the thousands of financial institutions impacted by the data breach suffered by the company in 2015 and 2016.
SecurityWeek RSS Feed: Cyber Attack on Malta’s Bank of Valletta
Malta's largest bank was the target of a cyber attack Wednesday, with hackers attempting to withdraw 13 million euros ($14.7 million), Prime Minister Joseph Muscat said.
Cyber Attack on Malta’s Bank of Valletta
Malta's largest bank was the target of a cyber attack Wednesday, with hackers attempting to withdraw 13 million euros ($14.7 million), Prime Minister Joseph Muscat said.
UK Data Intelligence Firm to Acquire IDology for $300 Million
UK-based Identity Data Intelligence specialist GBG has agreed to acquire the Atlanta-based identity verification and fraud prevention services provider IDology for $300 million in cash.
Based in Chester, GBG helps customers validate and verify the identity and location of their users.
Huddle House Suffers Payment Card Breach
Huddle House, an Atlanta-based restaurant chain with over 300 locations across the United States, informed customers recently that their payment card information may have been compromised as a result of a security breach.
SecurityWeek RSS Feed: Why Fighting Card-Not-Present Fraud Remains an Ongoing Challenge
The recent takedown of the xDedic marketplace—where threat actors had been buying and selling access to compromised remote desktop protocol (RDP) servers since at least 2016 and that, according to authorities, had facilitated over $68 million USD in fraud—is the latest reminder that fraudulent card-not-present (CN
Why Fighting Card-Not-Present Fraud Remains an Ongoing Challenge
The recent takedown of the xDedic marketplace—where threat actors had been buying and selling access to compromised remote desktop protocol (RDP) servers since at least 2016 and that, according to authorities, had facilitated over $68 million USD in fraud—is the latest reminder that fraudulent card-not-present (CN
Firms That Sold Fake Social Media Activity Settle With New York State
Companies that sold fake social media activity have reached a settlement with the state of New York in a case that, for the first time, established such activity as illegal, the state's attorney general said Wednesday.
SecurityWeek RSS Feed: Firms That Sold Fake Social Media Activity Settle With New York State
Companies that sold fake social media activity have reached a settlement with the state of New York in a case that, for the first time, established such activity as illegal, the state's attorney general said Wednesday.
SecurityWeek RSS Feed: State Bank of India Leaves Millions of Customer Messages Exposed
The State Bank of India is the latest large organization to leave a database full of personal information exposed and accessible on the internet.
The Tricky Balance in Declining or Accepting Online Payments
False positives are one of the biggest problems for security controls. In malware detection they interrupt work and divert incident response away from real issues. But in ecommerce and financial fraud detection, false positives can have a direct and serious effect on profitability. In most cases, it is a balance between high detection (more secure but with more false positives), and lower detection (less secure with fewer false positives).
SecurityWeek RSS Feed: The Tricky Balance in Declining or Accepting Online Payments
False positives are one of the biggest problems for security controls. In malware detection they interrupt work and divert incident response away from real issues. But in ecommerce and financial fraud detection, false positives can have a direct and serious effect on profitability. In most cases, it is a balance between high detection (more secure but with more false positives), and lower detection (less secure with fewer false positives).
SecurityWeek RSS Feed: Bangladesh to Sue Philippine Bank Over $81M Cyber Heist
Bangladesh will Wednesday file a lawsuit in New York against a Philippine bank over its involvement in one of the biggest-ever cyber heists, the country's central bank governor said.
WhatsApp Fights Fake News With Message Forwarding Limit
WhatsApp, the popular messaging application that has roughly 1.5 billion users, now only allows messages to be forwarded to a maximum of 5 people in an effort to block attempts to abuse the platform for spreading false information.
Facebook Closes Hundreds of ‘Inauthentic’ Russia-Linked Pages
Facebook announced Thursday that it has removed more than 500 pages, groups and accounts originating in Russia for engaging in what the social network called "coordinated inauthentic behavior."
Ongoing Attacks Hit West African Financial Institutions Since Mid-2017
Cyber-attacks that have been ongoing since at least mid-2017 hit financial institutions in West Africa, Symantec security researchers report.
New Magecart Group Targets French Ad Agency
A new threat actor operating under the “Magecart” umbrella landed a malicious skimmer on hundreds of websites through a supply chain attack, security firms reveal.