Automated attacks have potentially compromised the majority of websites that run the Drupal content management system, giving attackers platforms for launching malware, DDoS attacks and spam, according to the Drupal security team.
A new scheme recently identified by a credit union in the Northwest demonstrates that fraudsters are increasingly changing their tactics to exploit call centers. Learn about how this scheme worked and what can be done to thwart it.
As part of their breach response strategies, organizations need to establish clear guidelines in advance so they know when it's appropriate to offer victims free credit monitoring or ID theft protection services.
Information security experts say espionage-focused attackers, apparently operating from Russia, have been using phishing e-mails and malware in multi-stage attacks designed to evade detection and steal political and military secrets.
A U.S. federal court has shut down what the FTC alleges was a fake tech-support firm that posed as Facebook and Microsoft and tricked consumers into paying up to $600 each for bogus security tools.
The annual Amsterdam gathering of information security aficionados detailed the very latest hacking threats, including cybersecurity attacks via drone, sniffing data from fitness devices, and exploiting ATMs using Raspberry Pi computers.
A hacker involved in the RBS WorldPay network intrusion in 2008, which led to $9 million in fraudulent ATM withdrawals, has received a substantial prison sentence. Find out the details.
A Bulgarian who participated in the Shadowcrew forum, a now-defunct online marketplace for hacking and identity theft, has been sentenced to 30 months in prison for his role in the operation.
Security vendor Proofpoint warns that a "malvertising" campaign has been launching ransomware attacks against users of numerous high-profile websites, including search site Yahoo, dating site Match.com, and an AOL real estate site.
Many issuers of chip-based credit cards will likely allow U.S. consumers to complete transactions with a signature, not a PIN, which will limit the fraud protections offered by EMV cards, says Citizen Financial Group's Tim Webb.
Visa is working closely with U.S. banking institutions and retailers to enhance payments security and push the migration toward EMV, says the card brand's Eduardo Perez, a featured presenter at ISMG's Fraud Summit New York.
In his keynote address at the ISMG Fraud Summit New York on Oct. 21, PCI's Bob Russo predicts credit card fraud will significantly rise in the short term as EMV payment cards get rolled out in the United States. Find out why.
Researchers demonstrate how ATMs could be hacked - without installing malware - by connecting a tiny computer to an inside port, bypassing the ATM's own computer and instructing the cash dispenser to begin issuing money.
Staples has confirmed that it's investigating a potential data breach after a report warned that elevated levels of payment card fraud had recently been tied to card numbers used by consumers who shopped at the office supply retailer.
While fraud-fighting experts are debating the long-term impact President Obama's "BuySecure Initiative" will have on speeding EMV adoption in the U.S., they agree the president is drawing attention to the need for stronger card security.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.
