The Kmart hack that occurred this month features high in our monthly round up this month given this is not the first time they have been breached. It appears that their payments system has been affected by a malware breach (again). Whilst consumers are by and large protected by their financial institutions for financial loss, repeated breaches come to the attention of consumers and in time cost brands indirectly through loss of trust.
Kmart Security Breach
Kmart has been coy around the extent of their security breach as it has not affected all their stores. The breaches deployed malware designed to steal credit and debit card data from hacked point-of-sale devices. Essentially, the malware steals account data stored on the card’s magnetic stripe which is then used to clone fraudulent cards. These cards are used to "buy" expensive products from electronics retailers and supercentres.
Most large organisations use some form of Identity and Access Management (IAM) solution to assist in the tedious task of securing access so breaches to IAM providers results in significant disruptions. The OneLogin breach is of particular concern to organisations using their solution. OneLogin announced that hackers were able to access database tables that contain information about users, apps, and various types of keys. Despite the fact that the stored data is encrypted, they are unable to conclusively rule out the hackers did not also obtained the ability to decrypt such data.
The risk in Password reuse
Given we live so much of our lives online, it is no surprise that most users recycle and reuse their passwords on multiple sites. To the average user, it seems fairly harmless however, the real risk lies in credential stuffing. Next time one of your users laments the need to refresh passwords, be armed with these simple facts to educate and change behaviours
Another day, another email scam - this time Origin
The days of clumsy and unprofessional looking malware emails are far behind us and the Australian Origin email scam is a good example of this. The fraud Origin email is highly realistic and installs malware at the click of a button. It perfectly mimics the branding and billing format of the popular energy provider. With at least 65 antivirus vendors are not detecting the link as malicious, user awareness becomes your first defence. Use it next time you need to educate your users in malware scams.