On Sunday, Feb. 28, Snapchat disclosed that one of their employees fell victim to a ‘phishing’ scam and leaked sensitive payroll information of current and former employees. The scam email posed as a legitimate email from CEO and co-founder Evan Spiegel, requesting payroll information. Snapchat immediately reported the incident to the FBI, has offered 2 years of free identity theft insurance to affected individuals, and plans on strengthening their already rigorous training programs on privacy and security. This is not the first attack Snapchat has dealt with. Over two years ago, usernames and phone numbers of its then 4.6 million users were leaked online. Again in 2014, at least 100,000 media files were leaked over the internet. Snapchat insists that its internal servers were not breached in this most recent attack and assure its users that their information is completely safe.
The FighterPOS malware that was first reported, back in April 2015, now has a new variant. Floki Intruder, the latest variation of FighterPOS, now has worm capabilities that allow it to spread from an infected POS system to other POS systems on the same network. This is troublesome for industries like retail and hospitality because the worm capability of FighterPOS makes it much harder to eradicate from their systems. This malware was first observed to only affect Brazilian businesses, but researchers have noticed the code has begun to switch to English from Portuguese, suggesting the attackers have spread from just Brazil. When FighterPOS was first discovered in April of last year, only about 1% of infections detected occurred in the United States, but that percentage is now up to about 6%. This fact should alarm businesses using POS systems to make sure they are adequately protecting their network, employing strict access controls, and segregating the traffic flowing on their network.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.