Security News
Signifyd, CTI Digital and supercharged commerce announced a partnership that combines the digital experience of two of Europe's premiere agencies with Signifyd's superior fraud and abuse prevention expertise. The combination of CTI Digital and supercharged creates an agency ecosystem with incredible breadth to serve ecommerce, not-for-profit organizations, trade bodies, public sector agencies, higher education providers, construction businesses, professional services companies and leisure organisations.
South Korea has indicted Samsung Group vice chairman Lee Jae-yong over his role in a 2015 merger that made him heir apparent to the multinational's empire. Samsung and Lee have denied the charges, which include alleged breaches of the country's Capital Markets Act and External Audit Act.
According to the indictment, the brothers swapped ASINs for items Amazon ordered to send large quantities of different goods instead. In one instance, Amazon ordered 12 canisters of disinfectant spray costing $94.03. The defendants allegedly shipped 7,000 toothbrushes costing $94.03 each, using the code for the disinfectant spray, and later billed Amazon for over $650,000.
Although the names of the compromised apps using the SDK have not been disclosed, the code was uncovered in the iOS version of the Mintegral SDK, with the first version of the malicious SDK dating back to July 17, 2019. Hijack User Ad Clicks Stating that the SDK contains several anti-debug protection intending to hide the actual behavior of the application, Snyk uncovered evidence that Mintegral SDK not only intercepts all the ad clicks within an app but also use this information to fraudulently attribute the click to its ad network even in cases where a competing ad network has served the ad. It's worth noting that apps that feature in-app ads include SDKs from multiple ad networks with ad mediators' help.
Fraudsters are decreasing their schemes against businesses, but increasing COVID-19 focused scams against consumers online, according to TransUnion. The percent of suspected fraudulent digital transactions against businesses worldwide decreased 9% from the beginning of the pandemic to when businesses began reopening.
Although the names of the compromised apps using the SDK have not been disclosed, the code was uncovered in the iOS version of the Mintegral SDK, with the first version of the malicious SDK dating back to July 17, 2019. Hijack User Ad Clicks Stating that the SDK contains several anti-debug protection intending to hide the actual behavior of the application, Snyk uncovered evidence that Mintegral SDK not only intercepts all the ad clicks within an app but also use this information to fraudulently attribute the click to its ad network even in cases where a competing ad network has served the ad. It's worth noting that apps that feature in-app ads include SDKs from multiple ad networks with ad mediators' help.
Ad fraud security needs to be taken as seriously as other forms of cybersecurity. CISOs must consider the implications of ad fraud security, which the HPE report said is the easiest and the most lucrative form of cybercrime-even above credit card fraud, bitcoin mining, and bank fraud.
More than half of global airlines do not have DMARC policies in place, opening their customers up to email fraud attacks, a new report found. "Overall, major global carriers are failing to implement adequate email protection - leaving themselves open to phishing, impersonation attacks and other unauthorized use of corporate domains. This is despite email remaining the number one threat vector for cybercriminals," according to Adenike Cosgrove with Proofpoint in a Tuesday report.
Mogo announced that as part of its mission to help Canadians improve their financial health, it is now providing free access to its digital ID fraud protection solution, MogoProtect, to help Canadians better understand and combat identity fraud. "Seventy-five percent of Canadians were affected by data breaches in one year alone and, as recent issues with the CRA highlight, Canadians are more vulnerable than ever," said David Feller, Mogo's Founder and CEO. "Protecting Canadians from identity fraud is an important component of helping them manage and take control of their financial health. All Canadians need a solution, and we're pleased to provide the first truly free solution of its kind. As we continue to move more of our life online, we are all at an increasing risk of identity fraud."
Anti-fraud platform provider SpyCloud on Tuesday announced that it raised $30 million in a Series C funding round. Founded in 2016 in Austin, Texas, SpyCloud offers a platform designed to fuel solutions that prevent account takeover and which enable fraud investigations.