Join our subscribers
Jack Daniels, Ritz London Face Cyberattacks
Monday, August 17, 2020
Later, several of the targets found themselves subject to fraudulent charges on their cards, according to the BBC. In some cases where people had two-factor authentication in place, the scammers would phone again, pretending to be from the bank – and asking for the security code sent to a mobile phone.
“Unlike the other recently reported data breach about data stolen from Jack Daniel’s, the Ritz incident may have a much stronger consequences and extremely high losses,” said Ilia Kolochenko, founder and CEO of web security company ImmuniWeb, via email. “Guests of the luxury hotel are wealthy people… Despite multilayered defense and transaction verification mechanisms available for high net worth individuals, many of them lack technical knowledge and can be easily lured into expensive mistakes. Some VIP clients may enjoy generous protection against fraudulent credit card charges but not all banks offer them, moreover, there [are] a multitude of other avenues to profiteer from the alleged breach or extort money from the victims.” Read Full Article
SC Media: SANS Institute breach proves anyone can fall victim to a ‘consent phishing’ scam
Information Security Buzz: Security researcher publishes details and exploit code for a vBulletin zero-day