The North Face and Cartier are the latest retail brands affected by the increasing number of cyberattacks. The fashion and luxury companies reported small-scale attacks compromising customer names and emails but not financial information. A technique known as “credential stuffing” was used in the North Face attack, where unauthorized attempts were made to access accounts using stolen data from previous breaches. The VF Corporation-owned firm urges customers to change their passwords. Cartier stated that the attack allowed limited client data access but did not affect passwords or card information.
Clone, Compile, Compromise: Water Curse’s Open-Source Malware Trap on GitHub
The Water Curse group, a recently identified threat actor, has been using GitHub as a platform to deliver weaponized repositories. The group has a diversified
-1749626534695-w300.jpg?w=0&resize=0,0&ssl=1 "Beverly Sim, Senior Manager, Cyber Operations & Technologies, Cyber Security Office, Synapxe, Singapore")
-1749630621601-w300.jpg?w=0&resize=0,0&ssl=1 "Eric Wong, Director, Cyber Operations & Technologies, Cyber Security Office, Synapxe, Singapore")