Wendy’s released their first quarter financial statement today and in it the restaurant chain addressed their ongoing investigation into credit card breaches at their stores. It was found that somewhere around 300 of their franchises had been infected with malware on their point-of-sale systems (PoS). It’s believed the malicious software was installed starting in fall of 2015 using credentials from a compromised third-party vendor.
Petronella Blog Archive
Well, if you thought Congress was basically just a bunch of old men who had no idea how technology works, well here’s a story for you. As it turns out, at the end of April the House Technology Service Desk (House IT) sent an email out to House of Representatives staffers warning them about ransomware where hackers encrypt files and demand payment in Bitcoins to get a key to unlock them. Apparently, there’s being an increase in attacks through public email services like Gmail, but they seem to be having a real problem with YahooMail.
It’s been kind of a big couple of days for security updates with both Microsoft and Adobe putting out security patches you’re probably going to want to get. Adobe is looking to fix weaknesses in Cold Fusion and its PDF Reader with hints of a Flash update coming out later this week. Meanwhile. Microsoft is hoping to patch dozens of security flaws with 16 update bundles for Windows, Internet Explorer, and others.
On the heels of tax and salary data being stolen from payroll company ADP, and both Stanford and Northwestern Universities dealing with a similar issue, the nation’s largest grocery chain has sent a letter to all current and a few past employees notifying them that hackers have taken their tax and salary information.
A Michigan investment firm fell victim to CEO Fraud and is out $500,000 after an employee was tricked by a social engineering attack into transferring the money to a bank in Hong Kong. Unfortunately for them it’s likely their insurer won’t cover it since this was a human failure rather than a security failure in their hardware or software.
Sometime last year the data of over 57 million people was stolen, but apparently no one had any idea until that same information went up for sale on the dark web. The data contains usernames, passwords, email addresses associated with both governmental agencies and companies like Apple, Google, and Twitter from a three year period between 2012 and 2015.
According to Marcel Lehel Lazar, the Romanian hacker that goes by the handle Guccifer, he was able to hack his way into Hillary Clinton’s much maligned private email server. Lazar, who originally made public Clinton’s personal email address after hacking it, claims the server was completely unsecured and that he had access to hundreds of folders.