August 2020

A Note on the Trojan Compromise of NCR Corporation

Context, Uncategorized

Prevailion recently disclosed an active trojan compromise in the network of NCR Corporation. We at Prevailion are extremely pleased that NCR has taken this matter seriously, including the engagement of an elite IR team, and we applaud them for their quick and diligent response to the compromise we detected inside their network. As with all impacted organizations, we were more than happy to provide NCR with the full details of the compromise activity that we observed through our ongoing C2 monitoring. We were in touch with NCR’s security team and IR...

Share Post

Masquerading as Card-Skimmers: Are Attackers Doing More with Magecart?

Context, Uncategorized

While Magecart is well known as a malware hacking groups use to inject card-skimming scripts into e-commerce platforms, Prevailion researchers have detected many compromises with Magecart that suggest the malicious actors are not actually going after credit card data.  According to public data breach records, the credit card information of organizations from British Airways to NutriBullet, Tupperware, easyJet and Macy’s has been targeted in different card-skimming campaigns.  In July 2019, attackers leveraged a vulnerability in the e-commerce software platform Magento, which left more than 960 online retailers compromised in a single...

Share Post

Carnival Cruise Lines’ Long-Running Breach Problem

Context, Ransomware, Uncategorized

Carnival Corporation is back in the news again with another data breach. This time, the company disclosed in a recent 8-K filing that its network was compromised by an unnamed ransomware on August 15th which “encrypted a portion of one brand’s information technology systems” and “the download of certain of our data files.” This is the second public disclosure Carnival has made this year. In March, it also disclosed a data beach from April 11 – July 23 2019 which gained access to employee email accounts containing sensitive information. However, these are...

Share Post

Yahoo Finance: Microsoft is asking ‘for some serious scrutiny’ as it confirms talks to buy TikTok’s U.S. operations :Cybersecurity Expert

Press

Karim Hijazi, Prevailion CEO, alongside Yahoo Finance's Dan Howley, join The First Trade with Alexis Christoforous and Brian Sozzi to discuss the possibility of Microsoft buying TikTok's operations in the United States. Both Hijazi and Howley also weigh in on what this means for the social media industry overall and potential buyers beyond Microsoft....

Share Post