News

Boots suspends loyalty card payments after hackers try to compromise accounts

Hot on the heels of Tesco warning that hackers had attempted to access the accounts of Clubcard users, another UK high street retailer has warned that it has similarly been attacked.

Smashing Security #168: The Bitcoin fraud factory

Fraudsters steal millions from those hoping to jump on the Bitcoin bandwagon, Twitter verifies a fake US politician, and it’s another face palm for facial recognition.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire’s Dave Bittner.

Police raid tech support scam centre who had their CCTV hacked by vigilantes

An indepth investigation by online vigilantes has exposed the activities of an Indian tech support scam centre.

Extraordinarily, fraudsters had the tables turned on them as YouTuber Jim Browning was able to hack into the call centre and access recordings of scam phone calls and even watch live CCTV footage exposing the criminals at work.

bitdefender.com

Cathay Pacific slammed for security failures following hack which exposed 9.4 million people worldwide

The UK’s Information Commissioner’s Office (ICO) has fined Cathay Pacific for “a number of basic security inadequacies” which resulted in hackers stealing the data of 9.4 million people worldwide – including 111,578 from the UK.

Read more in my article on the Hot for Security blog.

Tesco blocks 620,000 Clubcard accounts after security scare

Over 600,000 Tesco Clubcard owners are being sent new cards after the supermarket giant determined hackers had attempted to access accounts.

In an email sent to affected Clubcard users, Tesco said it had spotted fraudulent activity related to some customers’ Clubcard vouchers.

tripwire.com

Beware secret lovers spreading Nemty ransomware

Who doesn’t love the idea of receiving an email with a subject line like “I love you”?

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

“Shark Tank” TV star loses almost $400,000 in Business Email Compromise scam

Barbara Corcoran, one of the business moguls who head up the judging team on US TV’s “Shark Tank” investment show, has lost nearly $400,000 to an email scammer.

Read more in my article on the Hot for Security blog.

HackerOne rewards bughunter who found critical security hole in… HackerOne

Vulnerability-reporting platform HackerOne has come clean about a critical security flaw on its own website that could have been used to expose the email addresses of users.

Smashing Security #167: Coronavirus scams and an exaggerated lion

Scammers from Africa are preying on US businesses, a drug dealer makes a mistake when hiding his Bitcoin fortune, and the Coronavirus pandemic is causing scams to soar and raising questions about facial recognition.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast with Graham Cluley and Carole Theriault, joined this week by Naked Security’s Anna Brading.

bitdefender.com

Exaggerated Lion and Business Email Compromise – Don’t send that check!

Well done on training your staff not to wire money into the accounts of criminal fraudsters. Unfortunately they’re sending the money by check instead.

Read more in my article on the Bitdefender Business Insights blog.

ToTok chat app tells users to ignore Google’s spyware warning

Google is warning users that ToTok is unsafe. ToTok says that users shouldn’t trust Google’s warning…

Smashing Security #166: What the Dickens! Ad ban thank you scam

How to stop dick pics on Twitter, and a new way bad guys are extorting money from websites earning cash from Google ads.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.

tripwire.com

MGM Resorts hacked: 10.6 million guests have their personal data exposed on hacking forum

Over 10 million people who have stayed at MGM Resorts hotels – including Twitter boss Jack Dorsey and pop idol Justin Bieber – have had their personal details posted online by hackers.

Read more in my article on the Tripwire State of Security blog.

Samsung freaks out smartphone owners with mysterious ‘1’ notification

Samsung has apologised after it accidentally sent a bizarre notification to smartphone owners’ devices.

Teenage girls tempt Israeli soldiers to install spyware for Hamas

It’s not the first time Israeli soldiers have been targeted with Hamas honeytraps to infect their smartphones with spyware.

bitdefender.com

Twitter accounts of The Olympics and FC Barcelona hijacked by OurMine hacking group

The International Olympic Committee and FC Barcelona are the latest victims of a spree of Twitter account hijacks orchestrated by the notorious OurMine gang.

Read more in my article on the Hot for Security blog.