Recent Posts

Recent Blog Posts

The PhishLabs Blog

Supermarket Skimming, Loyalty Card Scams, VTech Hack Arrest, and more | TWIC - December 18, 2015

Posted by Lindsey Havens on Dec 18, '15

TWIC_branding

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).


  • RAT trap: Norway police nab five in remote-access Trojan Europol swoop (ZDNet)
    Norway's Kripos national criminal investigation service today announced the arrest of five males, aged between 16 and 24 years, for possessing, using, and selling malware.

  • Don’t Be a Victim of Tax Refund Fraud in ’16 (Krebs on Security)
    With little more than a month to go before the start of the 2016 tax filing season, the IRS and the states are hunkering down for an expected slugfest with identity thieves who make a living requesting fraudulent tax refunds on behalf of victims. Here’s what you need to know going into January to protect you and your family.

  • VTech hack arrest over leak of 727,000 children's profiles (Wired UK)
    A 21-year-old man from the UK has been arrested in connection with the VTech hack that saw millions of customer details from around the world taken from the toy manufacturer.

  • Joomla patches critical remote execution bug (CSO)
    The open-source project behind the widely used Joomla content management system has issued a patch for a vulnerability that is now being widely used by hackers.

  • Landmark EU Data Protection Laws Near Finishing Line (Info Security)
    The EU Parliament and Council finally agreed on a text for the long-awaited General Data Protection Regulation yesterday, in a deal which could lead to fines of 4% of annual turnover for firms which break the rules.

  • OFFICIAL! Good passwords more difficult than rocket science (Naked Security)
    While the UK is celebrating the arrival of British astronaut Tim Peake at the International Space Station, a reminder that rocket science is alive and well…the European Space Agency (ESA) is living down a database breach that took place over the weekend, in which three tranches of data were dumped anonymously, for the lulz.

  • 19-Year-Old Teen Steals $150,000 by Hacking into Airline's Website  (Hacker News)
    That's exactly what a 19-year-old teenager did and made approximately 1.1 Million Yuan (£110,000 or $150,000) by hacking into the official website of an airline and using the stolen booking information to defraud hundreds of passengers.

  • Three Colorado Safeway stores involved in skimming breach (Denver Post)
    Skimmers were found on three point-of-sale machines in the self-checkout areas of the stores at 9160 W. Colfax Ave. in Lakewood; 3800 W. 44th Ave. in Denver; and 27152 Main St. in Conifer, said Safeway spokeswoman Kris Staaf.

  • At least 10 major loyalty card schemes compromised in industry-wide scam (The Register)
    The reward schemes of at least 10 leading retailers have been compromised by hackers, with numerous fraudulent loyalty point accounts available on the dark web in exchange for Bitcoin, according to security experts.

Topics: Phishing, Malware, PhishLabs, Hacker Tools, The Week in Cybercrime, Hacked, Patch, Breach

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Recent Posts

Posts by Topic

see all