Security News
The founder and CEO of NS8, a cyber fraud prevention and protection company, has been charged with fraud just months after the firm raised $123 million in funding, the U.S. Justice Department and the Securities and Exchange Commission announced on Thursday. The DoJ said Adam Rogas, 43, of Las Vegas, Nevada, was arrested and charged with securities fraud, fraud in the offer and sale of securities, and wire fraud.
The United States Department of Justice on Wednesday unsealed an indictment against two Russian nationals allegedly engaged in cryptocurrency fraud schemes. The two, Danil Potekhin and Dmitrii Karasavidi, allegedly targeted three cryptocurrency exchanges - two in the United States and one abroad - and their customers to defraud them of at least $16.8 million in virtual currency.
Signifyd, CTI Digital and supercharged commerce announced a partnership that combines the digital experience of two of Europe's premiere agencies with Signifyd's superior fraud and abuse prevention expertise. The combination of CTI Digital and supercharged creates an agency ecosystem with incredible breadth to serve ecommerce, not-for-profit organizations, trade bodies, public sector agencies, higher education providers, construction businesses, professional services companies and leisure organisations.
South Korea has indicted Samsung Group vice chairman Lee Jae-yong over his role in a 2015 merger that made him heir apparent to the multinational's empire. Samsung and Lee have denied the charges, which include alleged breaches of the country's Capital Markets Act and External Audit Act.
According to the indictment, the brothers swapped ASINs for items Amazon ordered to send large quantities of different goods instead. In one instance, Amazon ordered 12 canisters of disinfectant spray costing $94.03. The defendants allegedly shipped 7,000 toothbrushes costing $94.03 each, using the code for the disinfectant spray, and later billed Amazon for over $650,000.
Although the names of the compromised apps using the SDK have not been disclosed, the code was uncovered in the iOS version of the Mintegral SDK, with the first version of the malicious SDK dating back to July 17, 2019. Hijack User Ad Clicks Stating that the SDK contains several anti-debug protection intending to hide the actual behavior of the application, Snyk uncovered evidence that Mintegral SDK not only intercepts all the ad clicks within an app but also use this information to fraudulently attribute the click to its ad network even in cases where a competing ad network has served the ad. It's worth noting that apps that feature in-app ads include SDKs from multiple ad networks with ad mediators' help.
Fraudsters are decreasing their schemes against businesses, but increasing COVID-19 focused scams against consumers online, according to TransUnion. The percent of suspected fraudulent digital transactions against businesses worldwide decreased 9% from the beginning of the pandemic to when businesses began reopening.
Although the names of the compromised apps using the SDK have not been disclosed, the code was uncovered in the iOS version of the Mintegral SDK, with the first version of the malicious SDK dating back to July 17, 2019. Hijack User Ad Clicks Stating that the SDK contains several anti-debug protection intending to hide the actual behavior of the application, Snyk uncovered evidence that Mintegral SDK not only intercepts all the ad clicks within an app but also use this information to fraudulently attribute the click to its ad network even in cases where a competing ad network has served the ad. It's worth noting that apps that feature in-app ads include SDKs from multiple ad networks with ad mediators' help.
Ad fraud security needs to be taken as seriously as other forms of cybersecurity. CISOs must consider the implications of ad fraud security, which the HPE report said is the easiest and the most lucrative form of cybercrime-even above credit card fraud, bitcoin mining, and bank fraud.
More than half of global airlines do not have DMARC policies in place, opening their customers up to email fraud attacks, a new report found. "Overall, major global carriers are failing to implement adequate email protection - leaving themselves open to phishing, impersonation attacks and other unauthorized use of corporate domains. This is despite email remaining the number one threat vector for cybercriminals," according to Adenike Cosgrove with Proofpoint in a Tuesday report.