(get it in RSS or Atom)

Target missed multiple warnings that credit card data breach was underway

Target logo

Target's sophisticated security system went on full alert after detecting malware on the company’s network on 30 November last year and could have prevented the theft of 40 million credit and debit card numbers a few days later, according to a new report.

Target told to carry out security review just months before breach

Target was warned of payment system vulnerabilities before data breach

Former employees and others familiar with the breach investigation said at least one analyst recommended a thorough security review prior to Target's upgrading its payment system. Did the review actually happen, or was it lost in the cacophony of warnings security teams and government agencies constantly put forth?

Credit and debit card fraud targets US hotel guests

PoS breaches target US hotel guests

White Lodging runs businesses such as gift shops and restaurants within big US hotel brands. Guests at one of those hotel brands, Marriott, are advised to check their card statements following the discovery of a 9-month-long card suctioning operation.

Craft store Michaels faces second credit card compromise in 3 years


The largest craft supply store in North America, Michaels, has indicated it may be the latest retail company to have credit cards compromised in a large scale malware attack.

Europol and Canadian cops round up POS terminal tampering gang

Europol and Canadian cops round up POS terminal tampering gang

Pan-European law enforcement agency Europol has announced the take-down of a global gang of cybercrooks thought to be responsible for compromising POS terminals in Europe and North America, netting 30,000 sets of card details.

NASA hack blunder, doxer jailed, PAYE cybercrime, $20k iPhone prize - 60 Sec Security [VIDEO]


Why did Brazilian hackers target NASA? What happens to doxers? How much does it cost to get started in card skimming? And how much is a copy of your fingerprint worth?

Watch 60 Second Security and find out!

Cybercrooks can buy hacked POS device and money-laundering bundle for $2,000

PoS breaches target US hotel guests

The bundles are one-stop shops for point of sale fraud, including a rigged reader, a network of grey merchants who'll transform ill-gotten goods into cash, and various purchase options. The only missing ingredient: a larcenous waiter or store clerk.

Monday review - the hot 21 stories of the week

Monday review - the hot stories of the week

It's weekly roundup time. Here's all the great stuff we've written in the past seven days.

California duo charged with selling ready-to-hack Point-of-Sale systems to Subway branches

A pair of former Subway franchisees from California have been charged with cyberfraud against their former fellows.

The DoJ alleges they sold pre-compromised PoS systems that allowed them to plunder gift card credits from afar...

Point-of-Sale malware attacks – crooks expand their reach, no business too small


SophosLabs has been tracking a set of incidents involving Point-of-Sale malware.

The crooks have added a few tricks over the last 15 months.

Find out what's new, and why no business can "fly under the radar" of cybercrime...

Point of sale devices and Canadian banks targeted by Citadel malware variant

Point of sale devices and Canadian banks targeted by Citadel malware variant

A new variant of the prevalent Citadel crimeware kit has been discovered to target Point of Sale (POS) devices. Find out more, in this analysis from SophosLabs expert James Wyke.

Thieves rig Barnes & Noble PIN pads to steal credit card data

Thieves rig Barnes & Noble PIN pads to steal credit card data

Hackers tampered with point-of-sale terminals at 63 bookstores to hijack customers' credit card and PIN information.

Keep an eye on your statements and watch for unauthorised transactions.

Men plead guilty to $10 million Subway restaurant hack

Men plead guilty to $10 million Subway restaurant hack

Two men have pleaded guilty to their part in a multi-million dollar scheme which saw the point-of-sale computers of hundreds of Subway restaurant stores hacked into, and the details of customers' payment cards stolen.

A picked pocket in Mallorca reveals chink in chip-and-PIN security

A picked pocket in Mallorca reveals widespread hole in chip-and-PIN security

Researchers at Cambridge University are warning that a issue common to ATMs and point-of-sale terminals could enable attackers to clone secure EMV Chip and PIN cards.

Four Romanians charged with multimillion-dollar hack of Subway, others

Free Subway gift card spam spreading on Facebook

The US Department of Justice has indicted and arrested four Romanians for credit card fraud perpetrated against Subway restaurants and other retailers concluding a three year investigation. Looks like default/easily cracked passwords enabled another needless theft.