Techdirt: Malware Hunts And Kills Poorly Secured Internet Of Things Devices Before They Can Be Integrated Into Botnets

Techdirt: Malware Hunts And Kills Poorly Secured Internet Of Things Devices Before They Can Be Integrated Into Botnets. “Researchers say they’ve discovered a new wave of malware with one purpose: to disable poorly secured routers and internet of things devices before they can be compromised and integrated into botnets.”

Krebs on Security: How Cybercrooks Put the Beatdown on My Beats

Krebs on Security: How Cybercrooks Put the Beatdown on My Beats. “Last month Yours Truly got snookered by a too-good-to-be-true online scam in which some dirtball hijacked an Amazon merchant’s account and used it to pimp steeply discounted electronics that he never intended to sell. Amazon refunded my money, and the legitimate seller never did figure out how his account was hacked. But such attacks are becoming more prevalent of late as crooks increasingly turn to online crimeware services that make it a cakewalk to cash out stolen passwords.”

Krebs on Security: Shoney’s Hit By Apparent Credit Card Breach

The latest retail or restaurant chain to be hit by a hack might be Shoney’s. “It’s Friday, which means it’s time for another episode of “Which Restaurant Chain Got Hacked?” Multiple sources in the financial industry say they’ve traced a pattern of fraud on customer cards indicating that the latest victim may be Shoney’s, a 70-year-old restaurant chain that operates primarily in the southern United States. Shoney’s did not respond to multiple requests for comment left with the company and its outside public relations firm over the past two weeks.”

Reuters: Symantec attributes 40 cyber attacks to CIA-linked hacking tools

Reuters: Symantec attributes 40 cyber attacks to CIA-linked hacking tools. “Past cyber attacks on scores of organizations around the world were conducted with top-secret hacking tools that were exposed recently by the Web publisher Wikileaks, the security researcher Symantec Corp (SYMC.O) said on Monday.”

GameStop.com Acknowledges Possible Hack Incident

GameStop is investigating a possible breach of its Web site. “Two sources in the financial industry told KrebsOnSecurity that they have received alerts from a credit card processor stating that Gamestop.com was likely compromised by intruders between mid-September 2016 and the first week of February 2017. Those same sources said the compromised data is thought to include customer card number, expiration date, name, address and card verification value (CVV2), usually a 3-digit security code printed on the backs of credit cards.”

Leaked records up 566 percent to 4 billion in 2016: IBM Security (ZDNet)

ZDNet: ​Leaked records up 566 percent to 4 billion in 2016: IBM Security. “In 2016, more than 4 billion records were leaked worldwide, exceeding the combined total from the two previous years, according to a report from IBM Security. In its IBM X-Force Threat Intelligence Index 2017, Big Blue explained the leaked documents comprised the usual credit cards, passwords, and personal health information, but also noted a shift in cybercriminal strategies, finding a number of significant breaches were related to unstructured data such as email archives, business documents, intellectual property, and source code.”

WIRED: How to Protect Your iCloud Account, Juuust in Case Those Hackers Aren’t Joking

WIRED: How to Protect Your iCloud Account, Juuust in Case Those Hackers Aren’t Joking. “A HACKER GROUP called Turkish Crime Family says that it can access 250 million iCloud accounts, and will do so on April 7 to reset the password, locking people out of their accounts. They’ve even threatened to wipe people’s linked iPhones if Apple doesn’t pay up. And while it’s hard to tell how legitimate the threat is, their assertions make now as good a time to lock down your iCloud as ever.”