Security News

Discord Nitro gift codes now demanded as ransomware payments
2021-04-18 18:10

In a novel approach to ransom demands, a new ransomware calling itself 'NitroRansomware' encrypts victim's files and then demands a Discord Nitro gift code to decrypt files. While most ransomware operations demand thousands, if not millions, of dollars in cryptocurrency, Nitro Ransomware deviates from the norm by demanding a $9.99 Nitro Gift code instead. Based on filenames for NitroRansomware samples shared by MalwareHunterteam and analyzed by BleepingComputer, this new ransomware appears to be distributed as a fake tool stating it can generate free Nitro gift codes.

623K Payment Cards Stolen from Cybercrime Forum
2021-04-09 18:40

The Swarmshop cyber-underground "Card shop" has been hit by hackers, who lifted the site's database of stolen payment-card data and leaked it online. Card shops, are online cybercriminal forums where stolen payment-card data is bought and sold.

How global markets are adopting real-time payments
2021-04-09 03:00

More than 70.3 billion real-time payments transactions were processed globally in 2020, a surge of 41 percent compared to the previous year, as the COVID-19 pandemic dramatically accelerated trends away from cash and checks toward greater reliance on real-time and digital payments, a report from ACI Worldwide and GlobalData reveals. The report analyzes global real-time, account-to-account payment volumes and forecasts across 48 global markets.

Payment app MobiKwik denies customer data was stolen from it, has no idea how the info ended up on the dark web: Maybe it was your fault?
2021-03-31 02:56

Indian payment app maker MobiKwik has denied its security has been breached, saying that if it's true, as has been claimed, that its customers' information has appeared on the dark web, then some other platform was totally responsible for that. "Some users have reported that their data is visible on the dark web," reads a message from the company, dated March 30.

India payment app MobiKwik denies data leak, says customers may have posted own data to Dark Web
2021-03-31 02:56

Indian payment app maker MobiKwik has denied its security has been breached, saying that if it's true, as has been claimed, that its customers' information has appeared on the dark web, then some other platform was totally responsible for that. "Some users have reported that their data is visible on the dark web," reads a message from the company, dated March 30.

Ransomware admin is refunding victims their ransom payments
2021-03-28 22:53

On March 19, the Ziggy ransomware administrator said that they also wanted to return the money to the victims that paid the ransom. Today, after a week of silence, the admin said that they were ready to revert payments.

Ransomware gang urges victims’ customers to demand a ransom payment
2021-03-26 19:42

A ransomware operation known as 'Clop' is applying maximum pressure on victims by emailing their customers and asking them to demand a ransom payment to protect their privacy. After the Clop gang stole data from jet maker Bombardier in an Accellion hack, they leaked a small amount on their ransomware data leak site.

Clothes retailer Fatface: Someone's broken in and accessed your personal data, including partial card payment details... Don't tell anyone
2021-03-24 13:02

British clothes retailer Fatface has infuriated some customers by telling them "An unauthorised third party" gained access to systems holding their data earlier this year, and then asking them to keep news of the blunder to themselves. Several people wrote into The Register to let us know about the personal data leak, with reader Terry saying: "You will notice the Fatface email is marked as confidential. This annoyed me."

Hacker leaks payment data from defunct WeLeakInfo breach site
2021-03-16 19:03

The now-defunct WeLeakInfo data breach site has suffered its own data breach after a threat actor leaked the service's payment information and customer info. Last Thursday, a threat actor released an archive of payment processing data used by WeLeakInfo when processing payments through Stripe.

Hacker leak payment data from defunct WeLeakInfo breach site
2021-03-16 19:03

The now-defunct WeLeakInfo data breach site has suffered its own data breach after a threat actor leaked the service's payment information and customer info. Last Thursday, a threat actor released an archive of payment processing data used by WeLeakInfo when processing payments through Stripe.