Meet TrustTag at ISC WEST 2018 in Las Vegas

Visit www.trusttag.com to learn more. 

3rd Breach in 2 Days
Panerabread.com Leaked Millions of Customer Records for 8+ Months
Director of Information Security Ignored Initial Warning
Panerabread.com, the Web site for the American chain of bakery-cafe fast casual restaurants by the same name, leaked millions of customer records - including names, email and physical addresses, birthdays and the last four digits of the customer's credit card number - for at least eight months before it was yanked offline earlier today, KrebsOnSecurity has learned.

The data available in plain text from Panera's site appeared to include records for any customer who has signed up for an account to order food online via panerabread.com. The St. Louis-based company, which has more than 2,100 retail locations in the United States and Canada, allows customers to order food online for pickup in stores or for delivery.

KrebsOnSecurity learned about the breach earlier today after being contacted by security researcher Dylan Houlihan, who said he initially notified Panera about customer data leaking from its Web site back on August 2, 2017.

A long message thread that Houlihan shared between himself and Panera indicates that Mike Gustavison, Panera's director of information security, initially dismissed Houlihan's report as a likely scam. A week later, however, those messages suggest that the company had validated Houlihan's findings and was working on a fix. krebsonsecurity.com

Panera Bread says it fixed website security flaw
Panera Bread said it has resolved a security flaw that exposed customer data, and it said far fewer people were exposed than initially reported. Initial reports claimed that 37 million customers were exposed. But Monday night a Panera spokesperson told Fox News that the number was much smaller - around 10,000. wsbradio.com

Nearly Half of All Cyberattacks Result in Damages over $500,000
Hackers are outpacing and adapting their techniques at a faster pace than defenders, and nearly half of all cyberattacks are resulting in financial damages over $500,000, including lost revenue, customers, opportunities and out-of-pocket costs. According to the Cisco 2018 Annual Cybersecurity Report, cybersecurity professionals say they will increasingly leverage and spend more on tools that use AI and machine learning to address the increasing threats.

In the survey, 92 percent of security professionals said behavior analytics tools work well, and two-thirds of respondents in the healthcare sector found these analytics extremely effective to identify malicious actors.

The use of cloud is also growing - 27 percent of security professionals said they are using off-premises private clouds, compared with 20 percent in 2016. Among those security professionals, 57 percent say they host networks in the cloud because of better data security. However, the report says that attackers are taking advantage of the fact that security teams are having difficulty defending evolving and expanding cloud environments. securitymagazine.com

Is Security Accelerating Your Business?
With an ever-growing list of security and compliance requirements, security can hinder or slow business initiatives. Is your security department stuck in slow gear or can it go faster?

There's a fundamental push and pull between business and security that has introduced friction over the years. With data breaches commonplace, security requirements have continued to grow in scope and, in many cases, have slowed the ability of businesses to release to market faster. Business leaders often view security as a necessity in a world of frequent data breaches, and they have learned to (or are forced to) tolerate an ever-growing list of security requirements. But why is the validation and vetting of security requirements so slow, and does it have to be?

A lack of agility and responsiveness to the business ultimately gave rise to software-as-a-service (SaaS) applications that were fast and simple to deploy. Small, departmental SaaS footprints expanded enterprise-wide and eventually evolved into cross-functional application and services platforms. To a certain degree, shortcomings and delays in application deployments also gave rise to "shadow IT" - a complete circumvention of the security process.

This trend of embracing simplicity and speed has progressed into the consumerization of the infrastructure, as shown by the continued growth of infrastructure-as-a-service (IaaS) offerings such as Amazon Web Services and Microsoft Azure. With the increased adoption and simplicity of cloud deployment, the barrier to entry to spin up and deploy services has dropped dramatically, and this has increased the security gap in visibility and controls for these types of deployments. darkreading.com

KFC U.S. Partners with Ingenico Group to Simplify EMV Migration
Ingenico Group, the global leader in seamless payment, today announced that the world's most popular chicken restaurant chain, KFC, has migrated its payments system in the U.S. to Ingenico Group's Telium Semi-Integrated solution to simplify its path to EMV card acceptance and to reduce PCI compliance scope while providing their customers with more payment options and enhanced payment security. As part of the solution, customers will be able to pay using all forms of electronic payment, including EMV chip & PIN, EMV chip & sign, magstripe and NFC/contactless. businesswire.com

Boston: Brazilian Couple Charged in ATM Skimming Scheme
A Brazilian couple was arrested on Friday, March 30, 2018, and charged in federal court in Boston in connection with an ATM skimming operation. Alexandre Kawamura, 42, was charged with possession of device-making equipment, and Karem Kawamura, 25, was charged with aiding and abetting the use of a counterfeit access device.

Eastern Bank records showed that, on the day of Mr. Kawamura's arrest, purchases were made on the bank customer's account at Dick's Sporting Goods in Medford. The store's security camera recorded the defendants shopping at that store during the time when the bank customer's account was used to buy a shirt, jacket, and hat. justice.gov

What the Heck is Blockchain?

Blockchain is a decentralized, distributed and public digital ledger that can be used to track just about any type of data. The records in it cannot be altered easily.

Blockchain is decentralized so there is no one authority that maintains the ledger. This means that everyone can see and track movement and changes. When used for a cryptocurrency (like Bitcoin) it proves who owns the currency and how much it's owned. When used for data, it can keep track of the true owner and who has rights to the data.

Blockchain uses cryptography and advanced mathematical principles together with data to achieve three objectives: (1.) secure transactions, (2.) control the creation of additional units of currency, and (3.) verify the transfer of value. It uses a peer-to-peer decentralized system to conduct transactions and protect the anonymity of users. The entire process is online.

Solution Providers: Have a video or commercial you want to publish? Contact us 

Securing ecommerce payments and fighting fraud with AI
As online banking and ecommerce channels are growing exponentially, fraud within these channels becomes more prevalent and damaging.

In fact, the total number of ecommerce breaches, according to Experian, has increased 56% compared to 2016. Nevertheless, Artificial Intelligence (AI) and machine learning promise to radically shift the balance of power between merchants and the criminals who seek to steal from them.

The growth in digital payments and transactions has left merchants, PSPs and ecommerce companies vulnerable to sophisticated new cyberattacks. Furthermore, the number of people adopting the use of apps and mobile connectivity for making transactions is growing at an astounding rate. This is why, in part, technologies such as Artificial Intelligence (AI) and machine learning are critical in helping organisations fight fraud in better and more effective ways than ever before.

AI is an important development for the payments and transactions industry because merchant business models are evolving daily, from next day delivery of goods to digital downloads. Machine learning used in order to fight fraud is the logical solution for navigating this ever-changing landscape. Other anti-fraud systems using analytics that do not utilise machine learning capabilities, flag credit card purchases that take place outside a customer's country of residence, for example, or unusual payments to remote suppliers.

The problem with such systems is that those rules are created by humans, who cumulate and combine data and intuition. It has been proven to be somewhat effective, although the approach can be costly, slow, leading to false positives, and failing to keep pace with emerging trends.

Machine learning detects fraud in real-time and learns from trends, identifying quickly emerging fraud patterns. By integrating and analysing changing, unstructured, and fast-moving data in ways that humans alone cannot do it, machine learning employs the running of multiple self-learning algorithms in parallel to increase fraud detection and prevent it. Additionally, it can identify rare or never-before-experienced fraud events, automate tedious tasks and provide an anti-fraud solution that allows merchants, PSPs and their customers to rest easy knowing they are being protected by a sophisticated approach. thepaypers.com



As e-commerce fraud evolves, retailers need to strengthen fraud defenses
Many retailers still rely on static, single-layer tools to protect their bottom line. As incidents of fraud increases along with the sophistication of criminals, that is no longer enough. Watch our short video to learn how to take a multilayered approach to fraud prevention and identity verification. transunion.com



Goodwill Building Programs to Employ People in E-Commerce Jobs

Amazon Customers Vent Online over Account Closures

At Amazon's Monee, IL warehouse, robot co-workers are the new normal
 

Milwaukee, WI: Five people, 62 credit cards, and a nationwide fraud scheme stopped by investigators
A year ago, Spencer Dixon and four of his friends went to Milwaukee's Mitchell International Airport to fly home to Atlanta. Two of his friends had purchased the tickets the day before at the American Airlines counter. The group showed up for the 6:53 a.m. flight as planned. They never made it on board. The Chase credit card used to buy their tickets was a clone, created using a stolen number, and Milwaukee County Sheriff's detectives were waiting at the gate. The group was arrested and found to have 62 credit or bank cards between them - 47 confirmed fraudulent - and $17,000 in gift cards. Soon, detectives and prosecutors realized they had hit upon something much larger: a nationwide credit card fraud scheme. jsonline.com

St George, UT: Repeated retail thefts valued at over $10,000 land suspect in jail
A 33-year-old man suspected of stealing thousands of dollars' worth of merchandise from department stores in Hurricane, St. George and Washington City was arrested last week. John Diedrich, who has an address listed out of Clovis, California, was arrested Wednesday after a security officer observed his actions at the Hurricane Walmart. The security officer inventoried items in one of the bags before Diedrich returned to retrieve it. Diedrich returned to the store a third time and allegedly started filling up a cart with items. He was recognized by security and subsequently detained. The collective estimated value of all the items taken from the department stores was over $10,000. stgeorgeutah.com

Gastonia, NC: Two Charlotte Women Arrested in Connection to Theft from Home Depot
Quatoya Nahshee Morrison and Shalonda Cunningham were arrested by Hickory Police at about 5 p.m. Saturday. Morrison was charged with felony larceny and Cunningham was charged with felony aiding & abetting larceny. Morrison also had two outstanding warrants for misdemeanor larceny. Those were issued on February 14 and January 13 of this year. The two were arrested in connection to the theft of items from Home Depot. Morrison and Cunningham were taken into custody without incident. whky.com



Jensen Beach, FL: Woman accused of stealing from Toys 'R' Us; totaling $1,700
A 30-year-old woman from Deerfield Beach was arrested for reportedly stealing thousands of dollars worth of merchandise from Toys "R" Us. Ishella Silvena Richards loaded up her shopping cart with over $1,700 worth of toys and other items and headed out the door. Richards attempted to outrun the Sheriff's office, but failed. cbs12.com

Shootings & Deaths

Allentown, PA: Police investigating dead Walmart shoplifter's link to Schuykill County thefts
While fairly certain he's their guy, state police investigators are continuing to investigate whether Aaron Ibrahem, the man shot dead when he fired at a state trooper last week during a shoplifting attempt at a Lower Macungie Township Walmart, was behind a string of retail thefts at Walmart stores in Schuylkill County, including one where he pulled a gun on an employee. "We're still working on that for a positive confirmation," Lt. Joseph Sokolofksi, of PA State Police Criminal Investigations Unit, said. "It would appear by the m.o. and the surveillance footage that it is one and the same." mcall.com

Danville, IL: Kohl's Shoplifter critically injured after Police say he shot himself
The man was last listed in critical condition after Danville Police say he shot himself after a brief police chase Monday afternoon. According to Public Safety Director Larry Thomason, the man was a suspect in a retail theft. They found the suspect's vehicle and police say that's when the man drove off and hit a utility pole. Police say the suspect then ran to a field, pulled a weapon, and shot himself. commercial-news.com

Update: Memphis, TN: Neighborhood protests store after owner shoots, kills suspected Shoplifter; 2 Arrested Tensions boiled over Monday afternoon at the North Memphis convenience store where a 17-year-old boy was killed Thursday as dozens of protesters vowed to boycott the Top Stop Shop on Springdale. Police were called after receiving reports of an "unruly" crowd outside the store. wreg.com


Brighton, CO: Accused Thornton, CO Walmart shooter competent to stand trial
A judge ruled Monday that Scott Ostrem can be prosecuted for the November shooting at the store in suburban Denver based on an evaluation done at the state mental hospital. Police say Ostrem walked into the Walmart in Thornton and began shooting people in the checkout area. He's charged with killing 52-year-old Pamela Marques, 66-year-old Carlos Moreno and 26-year-old Victor Vasquez. He is also charged with 30 counts of attempted first-degree murder and committing a crime of violence. thestate.com

Robberies & Thefts

Port Jefferson Station, NY: 3 Armed men rob and tied up several CVS employees
The incident happened at the location on Nesconset Highway around 3:45 a.m. Three men armed with guns walked into the 24-hour CVS and tied up several employees inside. The men then robbed the store of drugs and cash. Could be part of a pattern of pharmacy robberies in Queens. news12.com

Boardman, OH: Shoplifters hit Burlington LP Agent with a Taser
Danielle Russell, 26, and Garanasia Drayton, 18, were arrested on Robbery charges on Friday. A Burlington employees, the women tried to conceal children's clothing in a bag and then walk out of the store. They were confronted by a loss prevention officer on the sidewalk outside. The officer told police that Russell then lunged at him while Drayton ran into the parking lot, later returning with a stun gun. He said Drayton used the stun gun on him, and they managed to get away while he grabbed the purse containing stolen clothing. wytv.com


Vero Beach, FL: Woman steals from Dillards because she didn't want to wait in line
Mary Mayor told the Deputy she had the money available to pay for the item, but she did not want to wait in line. However, the Deputy had a suspicion that she was hiding more than a Clinique bottle. Mayor appeared to be hiding something in her purse. The deputy observed three T-shirts inside the of her purse, all totaling $123.91. "When asked why she did not confess to everything she stole, she stated she was only talking about the Clinique bottle at the time," the report said. sebastiandaily.com

Burgettstown, PA: Former BP store employee charged with Burglary, enter store with extra key and alarm code

McDonald's manager arrested for Deposit Theft; totaling over $3,000

San Antonio, TX: Suspect arrested in beating, stabbing attack on C-Store manager during robbery

DeKalb, GA: Mississippi Prison Escapee Responsible for 20 Counts of Armed Robbery and Assault; Family Dollar, Dollar General, McDonalds and many more

Richmond, KY: Man indicted on charges from Dollar General and Family Dollar Robberies

Estate Coin and Jewelry Galleria in Sarasota, FL reported a Burglary on March 29, items valued at nearly $100,000

Submit Your New Hires/Promotions or New Position

Featured Job Spotlights

 

Featured Jobs

To apply to any of today's Featured Jobs, Click Here

Sponsor Today's Internet Jobs 

Great Leaders Relieve Stress with Laughter, Practice Patience, Let You Shine

 

4 Habits of Ultra-Likable Leaders That Are Hard to Find
Leadership is a journey. When you think you've reached your peak, there's always something else to learn or do to make you even better. Here are some lessons every great leader has learned to help them become even better. Slow to anger

Three Things the Best Bosses Do That Keep Employees Engaged
What motivates people to work? While the answers are quite endless, the most important sources of workplace motivation are autonomy, purpose and mastery. Here's how bosses can use these three aspects to boost performance and engagement. Help them get good at their job

13 Inspiring Traits of Exceptional Leaders
If you've ever worked with a truly remarkable leader during your career, you understand the kind of impact they can have on your growth and motivation to really work hard. Truly exceptional leaders share certain qualities that set them apart. Find opportunities to let you gain visibility

How Great Leaders Use Humor to Create Emotionally Safe, Fun Cultures
Nothing relieves stress faster than laughter. Through leveraging humor, leaders can create a safe, trust-based work environment, where employees can feel at ease, remain productive and teams can be brought together. Here's how you can implement a humor strategy in your workplace. CELEBRATE

Show us your Team Pride!

The age of the email has truly changed the way humans communicate both personally and professionally, with emails becoming that fast pitch right down the middle and stinging the catcher's hand when they least expect it, and oftentimes first thing in the morning before you've even had time to drink your first cup of coffee. It has almost become an accepted practice for many to compose their negative or conflicting thoughts about the days' events or conversations and push that send button after everyone has left so they don't have to face the receiver and so that they can almost act innocent the next day as if some imposter sent it the night before. It's almost as if the email world has offered some sort of anonymity to senders, even when it comes from their own address.

Just a Thought,
Gus

Not getting the Daily? Is it ending up in your spam folder?
Please make sure to add d-ddaily@downing-downing.com to your contact list, address book, trusted sender list, and/or company whitelist to ensure you receive our newsletter. 
Want to know how? Read Here