Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Macy’s informs customers that the checkout and wallet pages on its official website hosted a payment card skimmer between October 7 and October 15. [Read More]
Two Massachusetts men were arrested and charged this week for employing SIM swapping in attacks aimed at stealing cryptocurrency from their victims’ accounts. [Read More]
Venafi has uncovered over 100,000 fake domains with valid TLS certificates that mimic the domains of 20 major retailers in the US, UK, Australia, Germany and France. [Read More]
Retailers are spending their budgets on improving their e-commerce platforms to receive money while neglecting to invest adequately in security. [Read More]
A new JavaScript skimmer targets data entered into the payment forms of ecommerce merchant websites, Visa warns. [Read More]
A Russian accused of running a website that helped people commit more than $20 million in credit-card fraud has been extradited to Virginia to face criminal charges. [Read More]
Tech support scammers are exploiting an unpatched bug in Firefox to lock the web browser. [Read More]
A Long Island firm sold tens of millions of dollars in Chinese-made surveillance and other sensitive security equipment to customers, including the U.S. military to use on aircraft carriers, by falsely claiming the goods were manufactured in America. [Read More]
Ecommerce fraud prevention solutions provider Riskified has raised $165 million in a Series E funding round at a valuation of over $1 billion. [Read More]
Trend Micro has disclosed an insider threat incident that involved an employee selling information on roughly 100,000 customers to tech support scammers. [Read More]

FEATURES, INSIGHTS // Fraud & Identity Theft

rss icon

Alastair Paterson's picture
Organizations may not be able to mitigate BEC scams entirely; however, tightening up processes will ensure data exposure is kept to a minimum.
Josh Lefkowitz's picture
The abundance of compromised card data and other assets available online continues to hinder the fight against card-not-present (CNP) fraud.
Josh Lefkowitz's picture
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
Travis Greene's picture
While a credit freeze can protect against the opening of fraudulent credit accounts, it is not an inoculation against identity theft. What can be done to help protect identities and the attributes associated with them?
Ting-Fang Yen's picture
The attackers may be looking for the path of least resistance, but there is no shortcut to securing your platform.
Lance Cottrell's picture
In addition to basic credit monitoring, breached companies need to get ahead of the attacks and start providing security solutions that actually protect the victims before they are victimized again.
Torsten George's picture
While effective at curbing “petty crimes” such as credit skimming / cloning, EMV does not address more sophisticated cyber-attacks that target backend systems which contain card holders’ most sensitive information.
James Foster's picture
Many fraudulent accounts are mere satire or innocuous trolling, but others are created with far more devious intentions.
Jon-Louis Heimerl's picture
Social engineering attacks can happen at any time. Here are some strategies you can use to help reduce the chances of a successful social engineering/phishing attack you or your organization.
Mark Hatton's picture
They always say in the investment world that cash is king. We are now seeing that in terms of cyber as well. Stealing cash, it’s even better than stealing money.