Security Alerts & News
by Tymoteusz A. Góral

History
#1601 5900 online stores found skimming [analysis]
Online skimming is just like physical skimming: your card details are stolen so that other people can spend your money. However, online skimming is more effective because a) it is harder to detect and b) it is near impossible to trace the thieves.

In short: hackers gain access to a store’s source code using unpatched software flaws in various popular e-commerce software. Once a store is under control of a perpetrator, a (Javascript) wiretap is installed that funnels live payment data to an off-shore collection server (mostly in Russia). This wiretap operates transparently for customers and the merchant. Skimmed credit cards are then sold on the dark web for the going rate of $30 per card .
Read more
#1601 5900 online stores found skimming [analysis]
#1600 VeraCrypt patches critical vulnerabilities uncovered in audit
#1599 XG.fast DSL does 10Gbps over telephone lines
#1598 Why is Java so insecure? Buggy open source components take the blame
#1597 Attackers hiding stolen credit card numbers in images
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12