Recent Security News

  • US Charges Russian Involved in 2013 Hacking of Neiman Marcus, Michaels 

    January 19, 2024 at 10:00AM The US Justice Department recently charged two Russian nationals for involvement in cybercriminal activities, including hacking retailers Michaels and Neiman Marcus in 2013. Aleksey Stroganov and Tim Stigal are accused of stealing and selling payment card data, causing $35 million in losses. Stroganov’s partner, Roman Seleznev, received multiple prison sentences…

    Read More

  • Vans, North Face owner says ransomware breach affects 35 million people

    January 19, 2024 at 09:35AM VF Corporation reported a ransomware attack in December, with over 35 million customers’ personal data stolen, but no sensitive payment information affected. The attack disrupted business operations, leading to inventory and order fulfillment issues. VF Corp has restored most IT systems and is cooperating with authorities in investigating the incident.…

    Read More

  • Thieves steal 35.5M customers’ data from Vans sneakers maker

    January 19, 2024 at 09:00AM VF Corporation, parent company of popular fashion brands like Vans and North Face, reported that 35.5 million customers were affected by a cyber-attack in December. However, sensitive data such as social security numbers and financial information were unaffected, and there is no evidence that customer passwords were compromised. The attack…

    Read More

  • Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software

    January 19, 2024 at 08:51AM Pirated macOS applications from Chinese websites harbor a backdoor allowing attackers remote control over infected machines. The malware, hosted on “macyy[.]cn,” uses a dropper to fetch backdoor and downloader components, which enable persistence and facilitate additional payloads. This echoes previous incidents involving the ZuRu malware, possibly indicating a successor. (Words:…

    Read More

  • First Step in AI/ML Security is Finding Them

    January 19, 2024 at 08:31AM The growing use of AI in organizations poses new security risks. The adoption of AI tools without informing security teams leads to “shadow ML” and “shadow AI.” Legit Security’s platform provides visibility into all software components and developer tools. Securing machine learning involves finding its usage, threat modeling, and implementing…

    Read More