Global Weekly Executive Summary, 13 October 2017

New Security Problem for Equifax Website

On Wednesday, 11 October, a security researcher documented that the Equifax website was redirecting customers looking for credit reports to to a webpage with a false Flash Player Update screen. The fake update downloads the file MediaDownloaderIron.exe and is classified as adware. According to a HelpNet Security article, the malicious script causing the redirects was found to be “part of the code of a third-party vendor that Equifax uses to collect website performance data.” After initially disabling the page, Equifax removed the script causing the redirects.

Read more:

Security Through Absurdity, New Equifax Website Compromise

HelpNet Security, Equifax’s site hacked to redirect info-seeking visitors to adware

HelpNet Security, Compromised analytics provider made Equifax’s site point to malware

 

Hyatt Hotels Hit with Second Breach

Hyatt Hotels announced that they had been hit with their second payment card breach in as many years. According the a message from Hyatt’s Global President of Operations, this breach involved “unauthorized access to payment card information from cards manually entered or swiped at the front desk of certain Hyatt-managed locations” this spring and summer. Hyatt’s informational webpage on the breach included a list of 41 locations spread across 13 countries affected by the breach, including three locations in Hawaii. The Grand Hyatt Kauai Resort and Spa in Koloa, The Hyatt Regency Maui Resort and Spa in Lahaina, and The Andaz Maui at Wailea Resort in Wailea were all affected from 18 March to 2 July 2017.

The statement continues, “Based on our investigation, we understand that such unauthorized access to card data was caused by an insertion of malicious software code from a third party onto certain hotel IT systems,” and that the data accessed was “cardholder name, card number, expiration date and internal verification code.”

Read more:

Dark Reading, Hyatt Hit With Another Credit Card Breach

Hyatt, MESSAGE FROM GLOBAL PRESIDENT OF OPERATIONS

Hyatt, Protecting Our Customers, HOTEL LIST

Threatpost, Hyatt Hit By Credit Card Breach, Again