Security News

European Space Agency's official store hacked to steal payment cards
2024-12-24 17:07

European Space Agency's official web shop was hacked as it started to load a piece of JavaScript code that generates a fake Stripe payment page at checkout. [...]

Big brands among thousands infected by payment-card-stealing CosmicSting crooks
2024-10-04 03:42

Gangs hit 5% of all Adobe Commerce, Magento-powered stores, Sansec says Ray-Ban, National Geographic, Whirlpool, and Segway are among thousands of brands whose web stores were reportedly...

New Android Malware NGate Steals NFC Data to Clone Contactless Payment Cards
2024-08-26 04:46

Cybersecurity researchers have uncovered new Android malware that can relay victims' contactless payment data from physical credit and debit cards to an attacker-controlled device with the goal of...

Stolen, locked payment cards can be used with digital wallet apps
2024-08-19 18:22

Fraudsters can add stolen payment cards to digital wallet apps and continue making online purchases even after victims' report the card stolen and the bank blocks it, computer engineers with University of Massachusetts Amherst and Pennsylvania State University have discovered. Adding the card to a different wallet and making fraudulent purchases is made possible by the trust banks have in the digital wallet apps' security mechanisms.

Japanese police create fake support scam payment cards to warn victims
2024-04-27 17:11

Japanese police placed fake payment cards in convenience stores to protect the elderly targeted by tech support scams or unpaid money fraud. The cards are labeled "Virus Trojan Horse Removal Payment Card" and "Unpaid Bill Late Fee Payment Card," and were created by the Echizen Police in the Fukui prefecture in Japan as an alert mechanism.

Malicious npm packages steal Discord users’ payment card info
2022-07-28 14:13

Multiple npm packages are being used in an ongoing malicious campaign dubbed LofyLife to infect Discord users with malware that steals their payment card information. "All these packages contained highly obfuscated malicious Python and JavaScript code. We dubbed this malicious campaign 'LofyLife'."

PCI DSS 4.0 changes help organizations protect payment card data
2022-07-11 02:55

PCI DSS is a global standard that provides a baseline of technical and operational requirements designed to protect account data. This Help Net Security video introduces the most important PCI DSS 4.0 changes.

Thales launches payment card with onboard fingerprint scanner
2021-07-22 08:30

Thales has announced what it claims is the "World's first" payment card to include an onboard fingerprint sensor, promising improved security and usability - and an end to contactless payment limits. The Thales Gemalto Biometric Sensor Payment card, the company explained, replaces the traditional PIN with an on-card fingerprint sensor and requires no modifications to existing point-of-sale payment terminals.

Thales’s biometric payment card provides users with increased security and convenience
2021-07-21 02:15

This new card, which integrates a biometric sensor, provides users with increased security and convenience. The contactless biometric card simplifies proximity payments and also provides an essential level of privacy and confidence.

FIN7 ‘Pen Tester’ Headed to Jail Amid $1B in Payment-Card Losses
2021-06-25 18:06

A so-called "Pen-tester" for the financial cybergang known as FIN7 will spend seven years in the slammer after being convicted for payment-card theft. FIN7 is a well-known threat that's been circulating since at least 2015.