14 matches found
EUVD-2014-5757
Malware in sbrugna...
EUVD-2014-5795
Malware in sbrugna...
Kmart, Latest Victim of Egregor Ransomware – Report
Retail stalwart Kmart has suffered a ransomware attack at the hands of the Egregor gang, according to a report. The incident has encrypted devices and servers connected to the company’s networks, knocking out back-end services, according to BleepingComputer. The outlet obtained the purported rans...
Impact Of Chat Service Breach Expands To Best Buy, Kmart
The number of companies coming forward as victims of a data breach – that potentially exposed hundreds of thousands of credit card payment information – has expanded to include Best Buy and Kmart. Last week, software service provider 247.ai, a company that provides online chat services for Delta,...
Credit Card Breach at Kmart Stores. Again.
For the second time in less than three years, Kmart Stores is battling a malware-based security breach of its store credit card processing systems. Last week I began hearing from smaller banks and credit unions who said they strongly suspected another card breach at Kmart. Some of those...
Kmart Latest Retail Chain to Disclose Payment Card Breach
Kmart is the latest domino to fall in the seemingly endless streak of major retail chain breaches. The discount department store acknowledged on Friday that it fell victim to a “payment security incident” for most of September and some of October. The store, which is operated by Sears Holdings...
CVE-2014-5908
The Kmart aka com.kmart.android application @7F0C00EF for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Kmart aka com.kmart.android application @7F0C00EF for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5908
The Kmart aka com.kmart.android application @7F0C00EF for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5908
CVE-2014-5908 affects the Kmart Android app (com.kmart.android). The affected component is the SSL/TLS certificate validation logic, where the app does not verify X.509 certificates from SSL servers, enabling man‑in‑the‑middle attackers to spoof servers and exfiltrate sensitive data via a crafted...
CVE-2014-5870
The Kmart aka com.kmart.android application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Kmart aka com.kmart.android application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5870
The CVE-2014-5870 entry concerns the Kmart (com.kmart.android) Android app version 6.2.8. The connected documents confirm that the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certific...
CVE-2014-5870
The Kmart aka com.kmart.android application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...