Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
- Vawtrak Gains Momentum and Expands Targets (PhishLabs)
Vawtrak is the security industry's name for the latest version the 64-bit compatible Gozi Prinimalka Trojan, a family of malware first conceived in the mid-2000's. Recently, PhishLabs’ R.A.I.D (Research, Analysis, and Intelligence Division) has uncovered new developments in the latest Vawtrak configurations that indicate it is a much more substantial threat than it was a few months ago.
- Alleged Bank Hack Tied to Phishing? (BankInfo Security)
News reports of suspected attacks against JPMorgan Chase, and perhaps other banks, serve as an important reminder for financial institutions of all sizes to ramp-up their security efforts, especially to guard against phishing attacks.
- Card Trail Shows Home Depot Data Breach Could be Huge (Tech Target)
New evidence suggests that the apparent data breach at home improvement retail giant Home Depot may have affected customers across nearly all U.S. locations over the course of several months, potentially dwarfing the massive Target data breach in 2013.
- Goodwill Confirms Card Data Breach (BankInfo Security)
Goodwill Industries International has confirmed that a breach of a card processor's systems via malware exposed payment card data for an unspecified number of the charity's customers. Approximately 330 stores in 20 states were affected by the compromise – representing 10 percent of Goodwill’s 2,900 stores.
Microsoft is vowing to clean up its Windows Store, after a survey of the app store found many scam apps for sale that were deceptively labeled with logos and names of legitimate apps. Users who downloaded scam apps can apply for a refund, and developers of apps that have been cloned are encouraged to report copyright, trademark or publicity rights infringements.