Threatpost

After cybercriminals smoked out 3 million compromised payment cards on the Joker’s Stash marketplace, researchers linked the data to a breach at the popular barbecue franchise.

The move is a distinct change in direction for the app, which has been criticized and even banned for its security practices.

From a cyberattack on Barnes & Noble to Zoom rolling out end-to-end encryption, Threatpost editors break down the top security stories of the week.

Adobe says the two critical flaws (CVE-2020-24407 and CVE-2020-24400) could allow arbitrary code execution as well as read or write access to the database.

In-game features of the just-released FIFA 21 title give scammers easy access its vast audience.

After backlash over false marketing around its encryption policies, Zoom will finally roll out end-to-end encryption next week.

Companies that use Broadvoice's cloud-based VoIP platform may find their patients, customers, suppliers and partners to be impacted by a massive data exposure.

Customers' lists of book purchases along with email addresses and more could have been exposed during a (ransomware?) attack -- and that's a problem.

Hackers accessed personal information of guests, employees and crew for Carnival Cruise, Holland America and Seabourn as well as casino operations.

Organizations worldwide – including Travelex – have been sent letters threatening to launch DDoS attacks on their network unless a $230K ransom is paid.

BEC fraudsters now have bases of operation across at least 39 counties and are responsible for $26 billion in losses annually -- and growing.

The CVE-2020-5135 stack-based buffer overflow security vulnerability is trivial to exploit, without logging in.

The Iranian hacker group is targeting universities in 12 countries.

The Clop ransomware has become a tool of choice for the financially motivated group.

Intel's addition of memory encryption to its upcoming 3rd generation Xeon Scalable processors matches AMD's Secure Memory Encryption (SME) feature.

Intel and Google are urging users to update the Linux kernel to version 5.9 or later.

Databases of sensitive, financial and personally identifiable info and documents from Intcomex were leaked on Russian-language hacker forum after a ransomware attack.