Credit Cards News, Articles and Updates

Saks, Lord & Taylor breached, 5 million payment cards likely compromised

Five million customer credit and debit cards offered for sale by the JokerStash hacking syndicate, also known as Fin7, likely came from records stolen from Saks Fifth Avenue and Lord & Taylor between May 2017 and 28 March.

Marcher banking trojan campaign attacks Austrians' finances three different ways

An attack campaign targeting Android users in Austria has been employing a novel trio of techniques to steal their funds: a credentials phishing web page, malicious banking app overlays, and credit card phishing screens.

ICYMI: 2017 predictions; Post-Brexit; Trusting employees; Card Phish scam; WhatsApp delivers malware

In Case You Missed it this week includes: CyberSec 2017 predictions; Brexit data implications; Employees too trusting; Credit card details phished; Mobile malware via WhatsApp

Credit card fraudsters moving fast before US chip and pin adoption

The adoption of EMV in the US is quickly closing off the lucrative trade in card details, driving up the price of stolen data.

Worldpay merchant portal allowed merchants to view customer card data

Worldpay's electronic payment gateway setup pages offer poor security seals on credit card details, according to a security researcher.

Cyber-criminals have evolved tactics, says ThreatMetrix report

ThreatMetrix's new report has come up with several new insights from the last quarter including the evolution of bot tactics to avoid the traditional defences of lenders and banks.

Payment processing company tests facial recognition camera as fraud preventative

Worldpay, a payment processing technology company, said it's researching using facial recognition in stores around the UK as a card fraud preventative measure.

eBay e-commerce platform under attack

A new credit card-stealing attack is underway on the eBay Magento e-commerce platform, which is used by more than 240,000 businesses worldwide.

Securing the contact centre from the inside out

Matthew Bryars, CEO of Aeriandi, analyses the threat of insider fraud and what contact centres can do to minimise risk

15% of e-commerce sites hit by critical Magento RCE flaw

eBay's e-commerce platform Magento has a critical remote code execution (RCE) flaw, which could be used by hackers to remotely compromise up to 200,000 online stores in order to steal credit card details and personal information.

Same old Target: How retailers get hacked

The retail industry is a common target for hackers, mainly because that's where the money is. But as Sophos security expert James Lyne demonstrates, their defences are all too often easily exploitable.

Quantum physics behind 'unhackable' security authentication

A team of Dutch scientists is proposing a new security system for credit cards and passports which uses the power of quantum physics - and which is apparently 'impossible to hack'.

Hackers now offer '100% satisfaction guaranteed'

The underground hacker market has become so commercialised that cyber-criminals are offering "100% satisfaction" guarantees on stolen credit cards, or they will be replaced.

Russia to launch banking IT-security centre

Russian banks to share attack details via IT security centre for the banking sector.

Russian-speaking criminals account for £420m of card fraud annually

New research claims to quantify the scale of card fraud in Russian speaking circles. And according to Group-IB's analysis over the last year, that fraud clocks in at a hefty £420 million (US $680 million).

Home Depot card data breach undetected for four months

The Home Depot card data breach may have continued for longer than the Target attack late last year, according to new reports.

Card and banking fraud back on the rise again

Banking and card fraud back on the rise again says the FFA UK as crime increasingly moves online.

Home Depot credit card hack - bigger than Target?

All 2,200 Home Depot stores may be affected by the latest credit card hack suggests security researcher Brian Krebs.

PCI DSS audit tool cracked by cybercriminals

This development represents something of a shift in hacker methodology - Nigel Stanley, Incoming Thought CEO/analyst

Operation Echo smashes Bulgarian cybercrime gang

Complete counterfeit card production kits confiscated - plans to draw cash at magnetic stripe card-using ATMs in Asia thwarted

Don't blame PCI - we need to deal with the card data

Use of tokens is one of the ways we might limit the amount of sensitive data linked to our cards suggests Tim Critchley.

Anonymous Ukraine credit card leak is old data

Last week's reports of Anonymous Ukraine obtaining and leaking seven million credit card details may be erroneous, with the data having apparently been disclosed in older data breaches.

Anonymous Ukraine leaks seven million credit card details

Anonymous Ukraine says that it has information on "more than 800 million credit cards", and has leaked the first million of those with Visa, MasterCard, American Express and Discover accounts onto a public forum.

20 million South Koreans hit by massive banking breach

South Korea's regulators say that 20 million bank and credit card users have been compromised

Target hit by 40m card credential breach

Target card breach, "echoes of the infamous TJ Maxx incident of 2005" - Graham Cluley.

Holiday shopping phishing attacks on the rise

As Royal Mail issues phishing warning, a Manchester-based phishing scammer is jailed for three-and-a-half years.