credit

now browsing by tag

 
 

Cash #Converters is #HACKED: Cyber #criminals hold UK #customer #credit card numbers, addresses and #passwords to #ransom after major #security breach

Source: National Cyber Security – Produced By Gregory Evans

Hackers who attacked the now defunct website of second hand goods store Cash Converters may have access to the account details of thousands of customers.

Usernames, passwords, delivery addresses and potentially partial credit card numbers are among the data believed to have been stolen.

The culprits are said to be holding the information to ransom while the firm works with law enforcement authorities to investigate the incident.

It is not known exactly how many customers were impacted in the hack or when it happened.

 

Cash Converters operates high street stores where customers can trade items like jewellery and electronics for money.

The affected website, which was put out of action in September 2017 and replaced with an updated version, lets people purchase these products online.

As well as cash trade ins, the company offers small financial loans to its customers.

The data breech is only believed to affect customers of the Perth-founded firm who are based in the UK.

In a breach notification email sent to customers, a Cash Converters spokesman said: ‘Please be reassured that, alongside the relevant authorities, we are investigating this as a matter of urgency and priority.

‘We are also actively implementing measures to ensure that this cannot happen again.

‘Although some details relating to the cybersecurity breach remain confidential while Cash Converters works with the relevant authorities, we will continue to provide as much detail as possible as it becomes available.

‘The current webshop site was independently and thoroughly security tested as part of its development process.

‘We have no reason to believe it has any vulnerability, however additional testing is being completed to get assurance of this.

‘Our customers truly are at the heart of everything we do and we are both disappointed and saddened that you have been affected.

‘We apologise for this situation.’

Cash Converts reportedly received an email from hackers who claiming to have gained access to the data.

They threatened to release the data if they were not paid, which means anyone who used the old site before September 22 could be at risk.

Customers have been to advised to change their passwords and the firm has forced a reset for all UK webshop users.

Speaking about the breach, Jon Topper, CEO of UK webhosting firm The Scale Factory, said: ‘When migrating away from old solutions it’s important to bear in mind that old digital assets will still be running and available online until such time as they are fully decommissioned.

‘As a result they should still be treated as ‘live” which means maintaining a good security posture around them, keeping up with patching and so forth.

‘In their customer notification, Cash Converters were quick to point out that the old site was operated by a third party, possibly intending to deflect responsibility for this breach.

‘This definitely won’t fly under General Data Protection Regulation regulations coming into force next year.

‘Companies running server infrastructure that handles customer data should be engaging with experts to review their security posture ahead of that, in order to avoid being slapped with a large fine.’

The post Cash #Converters is #HACKED: Cyber #criminals hold UK #customer #credit card numbers, addresses and #passwords to #ransom after major #security breach appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

MP police #cyber cell busts #Indo-Pak gang involved in #credit card fraud

Source: National Cyber Security – Produced By Gregory Evans

MP police #cyber cell busts #Indo-Pak gang involved in #credit card fraud

Busting an international gang of credit card hackers, the cyber wing of Madhya Pradesh Police has arrested two persons on Monday who are accused of making large-scale online purchases by hacking information on credit cards. The two accused, both residents of Mumbai, are suspected to be associated with a gang of international cyber criminals, run by Pakistani citizen Shaikh Afzal aka Shozi.

Speaking after the arrest of credit card hackers, Superintendent of Police (SP) of State Cyber Cell of Indore unit, Jitendra Singh said that two Indian members of this gang, identified as Ramkumar Pillai and Ramprasad Nadar, were arrested following a complaint made by a bank official from Agar Malwa district.

“We have learnt that Shozi is a native of Lahore and got married only last year. Shozi visits different countries across the world. He was in Uzbekistan when Nadar and Pillai talked to him last time through Skype. We are trying to confirm these details,” the Superintendent of Police said.

The duo purchased hacked credit card details from some websites on the dark web and later paid for the information through Bitcoin. “If this payment is measured in terms of Indian currency, it costs only Rs 500 to Rs 800 to buy details of every credit card,” Singh added.

The gang members bought air tickets and travel packages of Bangkok, Thailand, Dubai, Hong Kong and Malaysia by using this information of hacked credit cards. They also shopped costly items online using the hacked details, said the official.

Singh said the accused also used to send half the amount, they spent by misusing the credit card details, to Shozi by secret online methods.

The accused also used to select the online e-commerce website, where they do not need a one-time password (OTP) to make a purchase. So, the holders would get the information about the misuse of credit cards only after the payment.

Singh said initial investigation revealed that both the accused have made purchases of about Rs 20 lakh by misusing the details of 17 credit cards so far. However, this figure may go up after further investigation.

He said that the police have been searching for a resident of Jabalpur, who is also learnt to be connected with this gang.

Source:

The post MP police #cyber cell busts #Indo-Pak gang involved in #credit card fraud appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

NETFLIX PHISHING CAMPAIGN STEALS CUSTOMERS’ CREDIT CARD DETAILS

Source: National Cyber Security – Produced By Gregory Evans

Netflix customers are being targeted by hackers posing as employees of the video streaming website in order to steal their credit card details. Researchers at the cybersecurity firm PhishMe uncovered the phishing campaign, which sent out Netflix-branded emails claiming to be from the company’s support team. Emails in the campaign…

The post NETFLIX PHISHING CAMPAIGN STEALS CUSTOMERS’ CREDIT CARD DETAILS appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

5 Ways to Protect or Freeze Your Credit After Identity Theft

Source: National Cyber Security – Produced By Gregory Evans

In the wake of the Equifax data breach, which compromised the personal information of up to 143 million Americans — nearly half of the U.S. population, according to NBC News — many Americans are looking to prevent potential identity theft. The Equifax breach is just the latest in a string…

The post 5 Ways to Protect or Freeze Your Credit After Identity Theft appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Scammers Are Constructing Fake People to Get Real Credit Cards

Source: National Cyber Security – Produced By Gregory Evans

On a warm day in May, agents from the FBI and the U.S. Postal Inspection Service descended on a leafy neighborhood in South Carolina and raided the home of a DJ suspected of using fake identities to obtain 558 credit cards from Capital One Financial Corp. Outside the house in…

The post Scammers Are Constructing Fake People to Get Real Credit Cards appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Watertown Police seeking suspects in credit card theft

Source: National Cyber Security – Produced By Gregory Evans

The Watertown Police Department is currently seeking information to help them locate two individuals suspected of credit card fraud. The Watertown Police Department has active arrest warrants for Erica Saucier, 27, and Christopher Main, 26; both of a last known address of 33 Oak Stree in Thomaston. According to police,…

The post Watertown Police seeking suspects in credit card theft appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Credit skimmers not spiking locally; officials still preach vigilance

Source: National Cyber Security – Produced By Gregory Evans

State and local officials are preaching vigilance over rising instances of identity theft around the state due to credit card skimmers in gas pumps. Sergeant Brian Sawyer with the Collier County Sheriff’s Department said that while his department had not yet noticed a significant increase of devices in the area,…

The post Credit skimmers not spiking locally; officials still preach vigilance appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

llegal credit card skimmer use on the rise at Florida gas stations

Source: National Cyber Security – Produced By Gregory Evans

Protecting your pin while paying for gas at the pump may not be enough to keep your card’s information safe. State inspectors have found more credit card skimmers in the first seven months of this year — 276 — than during all of 2016 — 219. “Identity theft is the…

The post llegal credit card skimmer use on the rise at Florida gas stations appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

After burglary, customers using Applebee’s Entree Express in March and April should check credit for identity theft

Source: National Cyber Security – Produced By Gregory Evans

On June 20, 2017, at about 6:00 am, Applebee’s restaurant located on Hilltop Dr. had a storage area broken into. Two boxes of receipts were stolen during the burglary. The records taken were Entree Express receipts for the months of March and April 2017. The records stolen had patrons’ names,…

The post After burglary, customers using Applebee’s Entree Express in March and April should check credit for identity theft appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hackers stole credit card data from Buckle stores

Source: National Cyber Security – Produced By Gregory Evans

Hackers stole credit card data from Buckle stores

The Buckle, Inc. has suffered a data breach, the clothing retailer announced this week. The company discovered intruders had planted malware on their cash register systems to steal credit card data from customers over several months. It’s unclear exactly how many cardholders may have been affected, but credit cards used…

The post Hackers stole credit card data from Buckle stores appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures