Cyber Weekly Digest - Week #41

Another interesting week for cyber security, including a new phishing technique and a ransomware 'vaccine'. Keep reading to find out about all the biggest stories in cyber security from around the world.

1. A card-skimming attack has compromised Boom! Mobile's website.

Mobile network operator Boom! Mobile's website became the victim of a Magecart campaign. On Monday, it was discovered that the firm's US website had been compromised and is actively being used to harvest shopper information. Magecart is a term to describe credit-card skimmer attacks and the cyber threat groups who use this method. Boom! Mobile has not yet responded to the attack, and shoppers are currently still at risk.

2. A new phishing method using HTML attachments is bypassing email security.

A new phishing scam was discovered earlier this week which is avoiding detection. Criminals are bypassing email security by using a fake website attached to the email itself as an HTML attachment. Typically, in a phishing campaign, the fake website would be reached by clicking a link. Researchers are urging people to avoid opening HTML attachments and be extra cautious of phishing emails during this time.

3. Asian food delivery service Chowbus has suffered a significant data breach.