Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
- Business Email Compromise Attacks Rapidly Evolving (Bank Info Security)
Business email compromise attacks, also known as "masquerading" or invoice scams, are becoming more sophisticated and pervasive, and small businesses are the primary targets, says Joseph Opacki, vice president of threat research at security firm PhishLabs.
- Gas Theft Gangs Fuel Pump Skimming Scams (Krebs on Security)
Few schemes for monetizing stolen credit cards are as bold as the fuel theft scam: Crooks embed skimming devices inside fuel station pumps to steal credit card data from customers. Thieves then clone the cards and use them to steal hundreds of gallons of gas at multiple filling stations. The gas is pumped into hollowed-out trucks and vans, which ferry the fuel to a giant tanker truck. The criminals then sell and deliver the gas at cut rate prices to shady and complicit fuel station owners.
- Holiday scams that will be donning your inbox soon (CSO)
Just like Santa, cybercriminals are busy making their toys. It’s a great time for IT to remind employees the poisonous gifts that were given last year. It’s likely you’ll see them (or some form of them) again this year.
- Hack Brief: Hacker Strikes Kids’ Gadget Maker VTech to Steal 5 Million Accounts (WIRED)
On Monday, children’s electronics manufacturer VTech acknowledged that a data breach on November 14 affected 5 million customer accounts, along with the user profiles of kids connected to those accounts. The hack, first reported by Motherboard over the holiday weekend, specifically targeted VTech’s “Learning Lodge” app store database.
- Hackers turn up their noses at Darkode forum resurrection (ZDNet)
The Darkode black market, once a hotbed of software exploits and hacking tools, is clinging on to life despite the best efforts of law enforcement -- but is now little more than a shadow of its former self.
- Robot that was “busted” for buying drugs on the Dark Web is back (Naked Security)
Random Darknet Shopper, a bot that was busted earlier this year by prosecutors for buying ecstasy on a Dark Web marketplace, is back at it again.
- Web Scripting Languages Fail OWASP Top 10 (Info Security)
Some 80% of applications written in PHP, Classic ASP and ColdFusion failed at least one of the OWASP Top 10, according to new research conducted by Veracode.
- JD Wetherspoon hit by cyber attack (Financial Times)
You’re going to get annoyed this holiday season dealing with new chip-card readers, now making their way into stores. I know I have. It will take time before they perfect this technology.
- Domination: Crims steal admin logins, infect sites, drop Cryptowall 4 (The Register)
Virus slingers who find themselves unsatisfied by merely ruining computers with ransomware are now first stealing a victim's admin passwords to enslave their websites into attack campaigns.