139 US bars, restaurants and coffeeshops infected by credit-card stealing malware

North Country Business Products (NCBP), a provider of point-of-sales systems, has revealed that 139 of its clients have been hit by a malware infection that stole the payment card details of consumers.

Read more in my article on the Hot for Security blog.


Forever 21 clothing stores hit by credit card data breach after encryption failure

Clothing retailer Forever 21 is telling customers to keep a close eye on their credit card statements, after the American fashion outlet warned that it had suffered a data breach at some of its stores.

Read more in my article on the Hot for Security blog.


US court hits Russian PoS hacker with record 27 year jail sentence

A Russian hacker has received the longest sentence ever handed down for hacking-related charges in the United States.

Read more in my article on the We Live Security blog.


Credit-card stealing malware hits Hyatt, Marriott, Sheraton hotel chains

Some 20 hotels have been attacked by hackers who planted point-of-sale malware on their systems.

Read more in my article on the Tripwire State of Security blog.

Sophisticated AbbadonPOS malware upgraded in its attempt to exfiltrate credit card data from retailers

Criminals have updated the AbbadonPOS malware with the ability to search for known point-of-sale (PoS) processes, in its hunt for consumers’ credit card data.

Beware spammed-out poisoned Word documents, warns David Bisson.

Ka-ching! The data breach threat that targets retailers

Criminals like to lurk in the shadows and silently steal money and information when it suits them.

Guest contributor David Share reports.


It starts with an email… How a hacking gang has stolen $17 million from banks and retailers since 2013

The activities of the Russian Anunak hacking group are explored in a newly-released report.

Read more in my article on the Tripwire State of Security blog.


UPS Store data breach – the post mortem can wait, it’s time to warn and advise the victims

You shouldn’t judge a corporation by how it got hacked, but by how well it handles the aftermath and whether acts openly and respectfully to its customers.

Read more in my article on the Hot for Security blog.

Michaels warns customers: ‘We may have experienced a data security attack’ (again)

RAM-scraping malware thought to have targeted point-of-sale computers at chain of US craft stores.

It’s bad news for Michaels as well as its customers, as questions will be asked as to whether the firm learnt any lessons after suffering a damaging attack at its cash registers a couple of years ago.

RAM-scraping malware could have been installed on Target’s tills

As Target’s CEO explains his company’s security screw-up in a TV interview, more details emerge of how hackers might have stolen the credit card details of many millions of the retailer’s customers.

Men plead guilty to $10 million Subway restaurant hack

Two men have pleaded guilty to their part in a multi-million dollar scheme which saw the point-of-sale computers of hundreds of Subway restaurant stores hacked into, and the details of customers’ payment cards stolen.