D&D Daily Mobile Edition

The D&D Daily Mobile Edition
LP, AP & IT Security's #1 News Source

4/26/21

D-Ddaily.net

Walmart information security expert Paul Suarez joins Casey’s as Chief Information Security Officer

Casey’s General Stores is expanding its information security efforts.

The convenience store retailer appointed Paul Suarez to the newly created role of chief information security officer. He will provide strategic leadership and direction for Casey’s information security function and lead the company’s cybersecurity team.

With 35 years of experience in cybersecurity, network operations and telecommunications, Suarez joins Casey’s from Walmart, where he most recently served as senior director, international info security. Prior to joining the chain in 2014, Suarez worked in the Washington, D.C., area in cybersecurity business development roles for RSA and Avaya. He is a graduate of the United States Air Force Academy and served his entire 27-year Air Force career in the fields of cybersecurity and IT. chainstoreage.com

See All the Executives 'Moving Up' Here

Submit Your New Corporate Hires/Promotions or New Position

New Public View Monitors from Hanwha Techwin now Feature Built-in Cameras

Easy-to-install and affordable Wisenet PVMs help deter retail crime

Teaneck, NJ, April 26, 2021 – Hanwha Techwin, a global supplier of IP and analog video surveillance solutions, today announced the immediate availability of a new range of easy to install and affordable Public View Monitors (PVMs) designed to help retailers deter crime. The new Wisenet PVMs offer a complete built-in SSL-connected 2-megapixel camera, eliminating the need for system integrators to install and connect a separate supporting camera. With a choice of 10”, 27”, and 32” monitors, the three new PVMs can be easily placed at store entrances, shopping aisles, cash registers, or self-service checkouts.

“Public view monitors can serve as a strong deterrent to illicit behavior, said Ray Cooke, Senior Vice President, Products, Solutions, and Integration, Hanwha Techwin America. “Our new line of PVMs has been designed for ease of installation so they can be quickly deployed across a large number of stores.”

Read more here

Protests & Violence

New Fund for Grocery Store Mass Shooting Victims
Stop & Shop creates fund for Long Island shooting victims, donates $500,000
Stop & Shop has established a fund to provide financial assistance to the family of a Long Island store manager who was killed and other employees who were injured in a shooting allegedly carried out by another worker on Tuesday.

The supermarket chain announced on Sunday that in addition to providing grief counseling, the company has donated $500,000 toward the launch of the West Hempstead Compassion Fund.

The fundraiser is independently managed by the National Compassion Fund, and 100% of donations will go directly toward funeral expenses and assistance to those who were injured.

“We are heartbroken by the violence that occurred at our West Hempstead store. We are mourning the loss of our beloved team member, Ray Wishropp, and praying for the full recovery of our two other injured associates. We are very grateful to the first responders for their heroic actions,” a spokesperson for the company said in a statement Sunday.

A separate GoFundMe fundraiser was also established by Wishropp’s family to help his seven children. pix11.com

Hundreds Protest Columbus Police Killing
Ohio protests continue Sunday for Ma'Khia Bryant, others killed by police
Protests continued Sunday in Columbus, Ohio, following the fatal police shooting of 16-year-old Ma'Khia Bryant last week. Roughly 200 people gathered in the city's Goodale Park before marching to a nearby street, where the crowd stopped and blocked traffic for an extended period of time.

Many chanted Bryant's name, held "Black Lives Matter" flags, and called for police accountability, according to the Columbus Dispatch.

Bryant was shot and killed by Columbus police Officer Nicholas Reardon last Tuesday. As Reardon pulled up the scene and got out of his car, Bryant can be seen on bodycam and surveillance footage lunging at one woman with an apparent knife.

Bryant then turns and lunges at a second woman with the apparent weapon raised, at which point Reardon fired four shots, fatally striking her. foxnews.com

Police & Protesters Clash in NYC
NYC Protesters block traffic, clash with cops on Brooklyn Bridge
Dramatic footage by The Post shows a crowd of protesters snarling traffic and squaring off with cops just a block from City Hall on the Manhattan side of the Brooklyn Bridge on Saturday night.

Six cops were seen corralling one man with his hands behind his back at the Manhattan mouth of the bridge from around 10:30 p.m.

Dozens of protesters had crossed the bridge by walking along its Manhattan-bound roadway, blocking cars. About a half dozen protesters were given appearance tickets for obstruction of vehicular traffic, according to police. There were no injuries reported, police said. nypost.com

ACLU Minn. Chapter Wants to Stop All Armed Police Traffic Stops - Stopping 'Pretextual Stops'

Minnesota Policing Bill Proposed in Response to Daunte Wright Shooting
Lawmakers take closer look at law banning certain traffic stops

Bill would end enforcement of reasons to stop drivers in wake of Daunte Wright's killing.

Minnesota law prohibits motorists from hanging objects from their car's rearview mirror, though an infraction seldom leads to a ticket.

But in the wake of the police killing of Daunte Wright, a 20-year-old Black man who was shot by a white officer during a traffic stop April 11, the law is getting fresh attention. Two state legislators have introduced a measure that would repeal the law, which advocates say gives police an excuse to target Black drivers.

Former Brooklyn Center police officer Kimberly Potter shot Wright after mistaking her gun for her Taser, according to police. Police later said they stopped Wright because he was driving with expired license tabs, but Wright's mother, Katie Wright, has said she was on the phone with her son during the stop, and he believed he was being stopped for having an air freshener dangling from his car's rearview mirror.

Continue Reading

Using Fighter Jets to Disperse Protesters?
California Guard members feared fighter jet would be ordered to frighten & disperse protesters
In March of last year, California National Guard members awaited orders from Sacramento headquarters to make preparations for any civil unrest that might arise from the outbreak of the coronavirus.

The members expected directives to ready ground troops to help state and local authorities respond to disturbances triggered by resistance to stay-at-home rules or panic over empty store shelves.

But then came an unusual order: The air branch of the Guard was told to place an F-15C fighter jet on an alert status for a possible domestic mission, according to four Guard sources with direct knowledge of the matter.

Those sources said the order didn’t spell out the mission but, given the aircraft’s limitations, they understood it to mean the plane could be deployed to terrify and disperse protesters by flying low over them at window-rattling speeds, with its afterburners streaming columns of flames. Fighter jets have been used occasionally in that manner in combat zones in Iraq and Afghanistan, they said.

Deploying an F-15C, an air-to-air combat jet based at the Guard’s 144th Fighter Wing in Fresno, to frighten demonstrators in this country would have been an inappropriate use of the military against U.S. civilians, the sources said.

They said the jet was also placed on an alert status — fueled and ready for takeoff — for possible responses to protests over the murder of George Floyd by a police officer and to any unrest sparked by the Nov. 3 presidential election. latimes.com

Store Closes Doors to Police Officers, First Responders
Rosendale, NY collectibles dealer won't sell to police, firefighters, military
A week ago Friday, Elizabeth Bloom was suddenly inspired to post this statement on her personal Facebook page:

"Soiled Doves will be closed to police officers as it is against our religion to sell to murderers."

Soiled Doves is the antiques and collectibles store Bloom runs on Main Street in the Town of Rosendale. And just like that, Bloom found herself in the middle of one of the hottest debates raging across America.

The George Floyd case and other high-profile shootings and killings of unarmed Black people seems to have just about everybody talking about police reform, whether they're for it or against it.

Bloom doesn't remember exactly what news development prompted her to create that post, but she said she later amended it to also include firefighters and military personnel. A week later, the original post is still getting responses, almost all of them opposed. recordonline.com

Knoxville protesters call for justice in death of Anthony Thompson Jr.

Why Legislators Are Passing Laws Protecting Drivers Who Hit Protesters

COVID Update

229M Vaccinations Given

US: 32.8M Cases - 586.1K Dead - 25.3M Recovered
Worldwide: 147.8M Cases - 3.1M Dead - 125.4M Recovered

Former Senior Loss Prevention Executive
Know of any fallen LP exec? Let's remember & recognize.

Private Industry Security Guard Deaths: 279
Law Enforcement Officer Deaths: 287
*Red indicates change in total deaths

Biden expected to announce updated mask guidance on Tuesday
President Biden is expected to announce on Tuesday updated guidance on masking from the Centers for Disease Control and Prevention (CDC), two sources confirmed to The Hill.

The guidance is still being finalized, according to multiple sources, but is likely to ease recommendations that Americans wear masks even while outdoors. Biden is expected to outline the changes in a speech on Tuesday more broadly addressing where the country stands in the fight against the coronavirus pandemic.

CNN reported the announcement will focus on whether vaccinated people need to wear masks when outdoors. thehill.com

26 state govt's - D.C. & Puerto Rico still have mask mandates in place
Oregon OSHA considering ‘permanent’ COVID-19 rule
Additions to rule include employer cooperation with vaccinations

The head of Oregon Occupational Safety and Health has proposed making permanent the agency’s temporary rule regarding COVID-19 measures, potentially keeping most mandatory public face mask, physical distancing and other infection control precautions in place independent of the state of emergency declared by Gov. Kate Brown.

In November 2020, Oregon OSHA’s temporary rule addressing COVID-19 workplace risks took effect, requiring employers to enforce universal face coverings, prepare workplace risk assessments, train employees on infection prevention and create outbreak response plans, along with other measures. A permanent rule proposed in February by Oregon OSHA Administrator Michael Wood would keep those requirements in place after the temporary rule’s May 4 expiration date and “until revised or repealed.” newportnewstimes.com

EEOC to publish vaccine incentive guidance, but will it be 'too late'?
The U.S. Equal Employment Opportunity Commission will update its coronavirus guidance to include information on vaccine incentives, the agency’s acting legal counsel told stakeholders in an April 15 letter shared with HR Dive.

● That promise came after employers and business groups — including the Society for Human Resource Management, the HR Policy Association and the U.S. Chamber of Commerce — requested such information from the commission Feb. 1. hrdive.com

Employers React to Workers Who Refuse a COVID-19 Vaccination
Some employers are firing workers who won't take the vaccine.

The Equal Employment Opportunity Commission (EEOC) has weighed in with guidance that answers some workplace vaccination questions. Employers may encourage or possibly require COVID-19 vaccinations, but policies must comply with the Americans with Disabilities Act (ADA), Title VII of the Civil Rights Act of 1964 (Title VII) and other workplace laws, according to the EEOC.

"An employee with a religious objection or a disability may need to be excused from the mandate or otherwise accommodated," noted John Lomax, an attorney with Snell & Wilmer in Phoenix. "Additionally, if an objecting employee is a union-represented employee, the employer may need to bargain and reach an agreement with the union before mandating vaccines." shrm.org

Vaccine Certificates in Order to Travel?
Europe Set to Let Vaccinated U.S. Tourists Visit This Summer

The head of the European Commission said the bloc would switch policy, under certain conditions, after more than a year of mostly banning nonessential travel.

American tourists who have been fully vaccinated against Covid-19 will be able to visit the European Union over the summer, the head of the bloc’s executive body said in an interview with The New York Times on Sunday, more than a year after shutting down nonessential travel from most countries to limit the spread of the coronavirus.

The fast pace of vaccination in the United States, and advanced talks between authorities there and the European Union over how to make vaccine certificates acceptable as proof of immunity for visitors, will enable the European Commission, the executive branch of the European Union, to recommend a switch in policy that could see trans-Atlantic leisure travel restored.

Ms. von der Leyen did not offer a timeline on when exactly tourist travel might open up or details on how it would occur. But her comments are a top-level statement that the current travel restrictions are set to change on the basis of vaccination certificates. nytimes.com

5M+ Americans Skipping 2nd Shot
Millions Are Skipping Their Second Doses of Covid Vaccines
More than five million people, or nearly 8 percent of those who got a first shot of the Pfizer or Moderna vaccines, have missed their second doses, according to the most recent data from the Centers for Disease Control and Prevention. That is more than double the rate among people who got inoculated in the first several weeks of the nationwide vaccine campaign.

Even as the country wrestles with the problem of millions of people who are wary about getting vaccinated at all, local health authorities are confronting an emerging challenge of ensuring that those who do get inoculated are doing so fully.

The reasons vary for why people are missing their second shots. In interviews, some said they feared the side effects, which can include flulike symptoms. Others said they felt that they were sufficiently protected with a single shot. nytimes.com

'Hunger Games' for Retailers?
Retailers & restaurants worry about finding summer workers as staffing shortages are worsened by pandemic
As vaccinated Americans start to get comfortable traveling again, popular summer destinations are anticipating a busy season. But hotel, restaurant and retail store owners warn that staffing shortages exacerbated by the coronavirus pandemic could force them to limit occupancy, curtail hours and services or shut down facilities entirely just as they’re starting to bounce back from a grim year.

The problem, they say, is twofold: The annual influx of seasonal foreign workers has stalled in places because of the pandemic. Businesses have also struggled to attract U.S. workers, even as many have redoubled their efforts to hire locally amid high unemployment.

"It’s the ‘Hunger Games’ for these employers, fighting for getting these guest workers into the country while also trying everything they can to recruit domestically," said Brian Crawford, an executive vice president for the American Hotel and Lodging Association, a Washington, D.C.-based industry group. "It’s really frustrating. They’re trying to regain their footing after this disastrous pandemic but they just can’t catch a break." foxnews.com

LA County Has Avoided Variant Surge
Los Angeles County continues to report progress in coronavirus fight
Weekend numbers of decreasing new cases and deaths continue to indicate that the region has so far avoided the variant-driven surge that has troubled some other states, such as Michigan.

The signs of progress have buoyed hopes that authorities can vaccinate enough people at a sufficient speed to head off a potential new wave of infection.

There were 407 COVID-19 patients in county hospitals as of Saturday, a decline of nearly 14% from two weeks before. During the peak of viral transmission in January, more than 8,000 people were hospitalized in L.A. County. And the share of coronavirus tests coming back positive continues to dip lower than at any point since the start of the pandemic. latimes.com

U.S. to send vaccine materials and other supplies to hard-hit India

6 things you must do if you’re planning to work remotely permanently

NYPD's New Specially Trained Unit to Assist Businesses
Getting Workers, Shoppers & Tourists Back To NYC

Manhattan Business Districts to Get More Police in Reopening Push
New NYPD division will work with firms as mayor tries to encourage return of office workers and help tourism rebound from pandemic

The New York Police Department will deploy dozens of officers to commercial districts in Manhattan as part of New York City’s push to encourage the return of workers to offices and help tourism rebound from the Covid-19 pandemic, police and city officials said.

The department’s business district recovery initiative detail will provide an additional police presence in any business community south of 59th Street, where business leaders said the quality of life in some corridors has deteriorated during the pandemic. The additional officers will help to change the perception that the areas are unsafe and combat a rise in public drug use, vandalism and aggressive panhandling, the business leaders said.

In the coming weeks, the new NYPD detail will work with businesses to identify areas in need of added patrols, police officials said. The detail will also provide community outreach, assist in responding to people in emotional distress and work with the city’s Department of Homeless Services to aid homeless people, police and city officials said.

Dan Biederman, president of the 34th Street Partnership, a business-improvement district covering parts of Midtown Manhattan, said in an interview that increased numbers of aggressive panhandlers and people experiencing mental-health crises have made some office workers and shoppers cautious about returning to the area.

NYPD statistics show that assaults, robberies, auto thefts and burglaries have risen this year in the Midtown South police precinct, where the 34th Street Partnership is located. Continue Reading

Biggest Effort to Address Biggest Safety Loss - 'MSDs'
Solving the MSD problem

'Jeff Bezos is obsessed with a common Amazon warehouse injury'
In his final letter to shareholders, Amazon CEO Jeff Bezos urged a deep dive into musculoskeletal disorders, which account for about 40% of work-related injuries across the company and affect millions of workers globally across sectors. It is often synonymous with jobs in manufacturing and places like warehouses.

"Bezos wrote in his letter, released earlier this month stated the employees suffer from MSDs that occur on jobs that include what can be described as robot-like repetition. The extended remarks by Bezos about this workplace injury amounted to one of the first announcements by a large corporation to draw broader attention to the issue, according to several experts consulted by CNBC. Estimates suggest that MSDs cost U.S. companies over $50 billion each year and resulted in between 21 and 32 days away from work on average between 1997 to 2010, and in addition to Amazon warehouse work, MSD issues in meat processing and poultry plants have drawn recent attention.

MSDs, often called “ergonomics injuries,” are typically strains and sprains caused by repetitive motions, overexertion, or task performance in awkward positions and include issues like carpal tunnel syndrome and tendonitis. According to the Bureau of Labor Statistics, retail trade, manufacturing, and social assistance jobs accounted for 50% of all MSD cases in the private sector.

Bezos wrote, adding that the company launched a program to coach small groups of employees on body mechanics and safety which contributed to a 32% decrease in injuries between 2019 and 2020, while the time away as a result of the injuries “decreased by more than half,” Bezos said in the recent letter. “We need to invent solutions to reduce MSDs for new employees, many of whom might be working in a physical role for the first time.” cnbc.com

Pharmacy Tech Stole, Resold Millions in Meds
New Jersey VA pharmacy tech charged with stealing $8.2M in HIV meds
A former pharmacy technician at a New Jersey VA medical heart is charged with stealing over $8 million value of HIV treatment from the office, federal prosecutors mentioned.

Lisa Hoffman, 48, is accused of swiping the dear meds from the federal medical heart in East Orange for over two years ending in November 2019, the US Legal professional’s Workplace for New Jersey introduced Wednesday.

Prosecutors allege Hoffman, who was tasked with ordering medicine for the ability’s outpatient pharmacy, was caught on surveillance footage quite a few occasions taking dozens of bottles of the treatment, in response to prosecutors.

Hoffman would then allegedly promote the prescribed drugs to 33-year-old Wagner Checonolasco, generally known as “Wanny,” authorities mentioned.

Checonolasco, who was already charged in the case, resold the meds to others, prosecutors mentioned. Hoffman is charged with theft of medical merchandise. gruntstuff.com

Supreme Court to Hear Case on Right to Carry Concealed Guns for Self-Defense
Justices to consider New York restrictions on carry rights in the first major Second Amendment case before the court since 2010

The Supreme Court agreed Monday to review a New York state law that limits carrying concealed firearms outside the home, the first major Second Amendment case it has heard since 2010 and one that could lead to a loosening of gun laws nationwide.

The court first recognized a right to keep handguns in the home in a 2008 case and extended that ruling nationwide in 2010. Since then the court has declined to consider how far Second Amendment rights extend outside the home, even as most state and local gun regulations were upheld by lower courts.

New York law provides for different categories of gun licenses, including premises licenses that allow weapons to be held at a specific location. To carry a concealed weapon elsewhere, an applicant must demonstrate “proper cause,” which gun advocates say the state defines too restrictively. New York doesn’t allow open carrying of weapons.

The plaintiffs, which include gun owners who were denied carry permits. The court slightly narrowed the question presented in the lawsuit, saying it would address whether the state’s denial of the plaintiffs’ “applications for concealed-carry licenses for self-defense violated the Second Amendment.” wsj.com

How Southeastern Grocers Plans to Fight Food Waste
Southeastern Grocers is looking to save millions of pounds of food waste from ending up in landfills by rolling out a new initiative with Date Check Pro to all stores. Date Check Pro is a software solution that arms retailers with control over expiring products, driving efficiency and ensuring the freshest shopping experience possible. Southeastern Grocers originally piloted Date Check Pro in three of their locations in 2019 and expanded to an additional nine stores in 2020. Rollout to the remaining stores was completed in April. progressivegrocer.com

Disney closing all Canadian stores amid retail strategy shift

Quarterly Results
Albertson's Q4 comp's up 11.8%, digital sales up 282%, sales up %, FY 2020 comp's up 16.9%, digital up 258%

Last week's #1 article --

New York BLM protesters heckle taqueria diners: 'Stay the f--- out of New York'

All the News - One Place - One Source - One Time

Thanks to our sponsors/partners - Take the time to thank them as well please. If it wasn't for them The Daily wouldn't be here every day for you.

COVID-19 Safety Essentials Solutions Guide
Now Available from siffron®

siffron®, a leader in retail merchandising, is introducing a new COVID-19 Safety Essentials Solutions Guide to help retailers find the products they need to meet the safety and social distancing requirements of today.

To help retailers deal with new emerging trends in day-to-day shopping as a result of the COVID-19 pandemic, retailers need to respond with products that protect both store associates and consumers. The COVID-19 Safety Essentials Solutions Guide compiles all of our products relevant to addressing these needs into four sub-categories:

● Cleaning and Janitorial
● Signage and Messaging
● Safety and Protection
● Health and Wellness

Please take a moment to browse through our new COVID-19 Safety Essentials Solutions Guide here. At siffron, we are always finding new ways to help retailers serve customers. Be safe!

About siffron
For over 60 years, siffron has been a leader in the retail display and loss prevention industry, providing solutions designed to increase sales, improve category management, limit shrink and reduce labor at the point of sale. These products include custom product displays; merchandising and loss prevention systems; label, sign and literature holders; product merchandisers and display components; as well as fresh area merchandising products, supplies and backroom organization solutions. siffron offers start-to-finish solution delivery, including consultation, design, prototyping, production, fulfillment and purchase consolidation.

This software update is deleting botnet malware from infected PCs around the world
Law enforcement-designed update disconnects machines infected with Emotet malware from command and control servers.

A specially crafted update created by law enforcement has triggered the process of removing the Emotet botnet malware from 1.6 million infected computers around the world.

Emotet was thought to be the world's largest botnet, known for spewing millions of malware-laden spam emails each day. Law enforcement in the US, Canada and Europe conducted a coordinated takedown of Emotet infrastructure in January to rid the web of one of its worst menaces, which was used to spread banking trojans, remote access tools, and ransomware. darkreading.com

'FluBot' Posing as Delivery Services, Retailers to Steal Personal Info
This password-stealing Android malware is spreading quickly

FluBot is designed to steal personal information including bank details - and infected users are being exploited to spread the malware to their contacts.

A malware campaign with the aim of stealing passwords, bank details and other sensitive information is spreading quickly through Android devices.

Known as FluBot, the malware is installed via text messages claiming to be from a delivery company that asks users to click a link to track a package delivery. This phishing link asks users to install an application to follow the fake delivery – but the app is actually malware for stealing information from infected Android smartphones.

Once installed, FluBot also gains access to the victim's address book, allowing it to send the infected text message to all their contacts, further spreading the malware.

The UK's National Cyber Security Centre (NCSC) has issued security guidance about how to identify and remove FluBot malware, while network providers including Three and Vodafone have also issued warnings to users over the text message attacks.

Attacks begin with messages that most commonly claim to come from delivery service DHL – although the names of other brands including Asda, Amazon and Argos are also being leveraged.

Once installed, FluBot obtains all the permissions necessary to access and steal sensitive information including passwords, online bank details and other personal information, as well as the ability to spread itself to others. It's this mechanism of using contact information that is allowing FluBot to spread so quickly.

While the malware can only infect Android devices, Apple users are also urged to be cautious about text messages urging them to click links about a delivery as the malicious websites could still be used to steal personal information. zdnet.com

Internet Bots Interfering with Vaccine Rollout
Bot Traffic Responsible For 40% Of Internet Activity and Interferes With COVID-19 Vaccine Rollout and Online Shopping

Bad bots were responsible for more than a quarter of all website traffic, according to a report by Imperva’s Threat Research Lab.

The threat intelligence firm categorized website traffic into human sources, bad bots, and good bot traffic. While humans were the major source of internet traffic, bots contributed to over 40% of website visits.

Additionally, the report found that human traffic fell while bot traffic increased. Imperva analyzed the bad bot landscape and the impact that malicious bot traffic had across industries.

The report posits that bot activity could interfere with COVID-19 rollout, online shopping, and account safety.

Bad bot traffic the main source of automated internet activity
Imperva’s 8th Annual Bad Bot Report found that bot traffic accounted for every four out of five (40%) web requests. More than a quarter (25.6%) of all internet traffic originated from malicious bots, a 6.2% increase from 2019. Comparatively, good bots accounted for 15.2% of internet traffic, a 16% increase from the previous year.

Bad bots could interfere with vaccine rollout
Malicious bots swarmed COVID-19 vaccine registration sites, thus frustrating human users. There was also a 372% increase in automated traffic on healthcare websites from September 2020. When COVID-19 vaccines became widely available, Imperva experienced up to 25,000 automated requests per hour.

Malicious bots actively targeting mobile platforms
The report found that bad bots disguised themselves as mobile browsers in 2020. This was more than a 100% increase of mobile bad bots from 12.9% to 28.1% in 2019.

Chrome remained the primary source of bad bot traffic, while other browsers, including Mobile Safari, Mobile Chrome accounted for 28.1% of bad bot traffic. cpomagazine.com

29,000 Customers Urged to Change Passwords
Password Manager Suffers 'Supply Chain' Attack
In an attack reminiscent of that of IT management and remote monitoring software firm SolarWinds, a malicious update to the Click Studios password-manager platform Passwordstate dropped malware onto its software systems this month.

Click Studios is warning customers to change all stored passwords for their accounts, including VPNs, firewalls, switches, local accounts, and servers.

The attack was revealed today by researchers at the CSIS Security Group, which also published indicators of compromise for the attack — which they have dubbed Moserpass. According to CSIS, the breach occurred between April 20 and April 22, using a malicious update via a zip file named Passwordstate_upgrade.zip that included a malicious DLL, moserware.secretsplitter.dll. Click Studios said the command-and-control for the attack was shut down on April 22.

Click Studios has some 29,000 enterprise and government customers worldwide, across aerospace, banking, defense, healthcare, utilities, and other industry sectors. darkreading.com

The Incredible Rise of North Korea’s Hacking Army
The North Korean government has produced some of the world’s most proficient hackers. At first glance, the situation is perverse, even comical—like Jamaica winning an Olympic gold in bobsledding—but the cyber threat from North Korea is real and growing. Like many countries, including the United States, North Korea has equipped its military with offensive and intelligence-gathering cyber weapons.

North Korea, moreover, is the only nation in the world whose government is known to conduct nakedly criminal hacking for monetary gain. Units of its military-intelligence division, the Reconnaissance General Bureau, are trained specifically for this purpose.

North Korea’s cybercrime program is hydra-headed, with tactics ranging from bank heists to the deployment of ransomware and the theft of cryptocurrency from online exchanges. In 2019, a United Nations panel of experts on sanctions against North Korea issued a report estimating that the country had raised two billion dollars through cybercrime. Since the report was written, there has been bountiful evidence to indicate that the pace and the ingenuity of North Korea’s online threat have accelerated. newyorker.com

Window Snyder Launches Startup to Fill IoT Security Gaps

Juniper Research: eCommerce Losses to Online Payment Fraud to Exceed $20 Billion Annually in 2021
A new study from Juniper Research has found that the value of losses due to eCommerce fraud will rise this year, from $17.5 billion in 2020 to over $20 billion by 2021; a growth of 18% over a single year. The research found that fraudsters have targeted consumers as they have increased their eCommerce use; exposing insecure fraud mitigation processes from merchants who are unfamiliar and unprepared for the continuing fraud challenges in this market.

The research identified that merchants need to do more to implement fraud prevention strategies across all of their eCommerce channels, or they will continue to experience large losses. The use of AI will enable behavioural biometrics in this area, which will increase security across all potential fraud channels.

For more insights, download the free whitepaper: Fighting Online Payment Fraud in 2021

Increased Security Must Not Involve Increased Friction

The new research, Online Payment Fraud: Emerging Threats, Segment Analysis & Market Forecasts 2021-2025, found that while merchants will be keen to reduce fraud rates from their current levels, they will be hesitant to introduce extra friction into the checkout process. The report identified that clear messaging around security checks and automated behavioural analytics leveraging AI are key capabilities in preserving the user experience. businesswire.com

New E-Commerce Tax Hits Florida
Florida is the latest state to create e-commerce tax

Florida will now require out-of-state vendors to collect sales taxes as the state looks to generate revenue and level the playing field between online and physical retailers. Gov. Ron DeSantis signed a bill this week that adds a 6% tax to remote sales effective July 1, which sellers must collect and remit.

In writing the bill, Florida's legislature stated that it "intends to equalize the tax collection responsibilities of retailers both inside and outside Florida."

Florida's tax was made possible by the 2018 Supreme Court decision that overturned decades of precedent that allowed online retailers to dodge sales tax.

For years, states and traditional retailers argued the disparity in tax collection effectively gave e-commerce an advantage over local brick-and-mortar stores and created revenue holes for governments. The U.S. Government Accountability Office estimated at one point that states were losing $8.5 billion to $13 billion every year in uncollected taxes.

The Supreme Court ultimately sided with states and retailers in its decision in South Dakota v. Wayfair, in which South Dakota argued that it should be able to collect taxes from sellers with an "economic" presence in the state rather than just a physical one.

The decision paved the way for local e-commerce sales taxes, and states soon started changing their law books accordingly. Of the 45 states that collect sales tax, Missouri is now the only one left without a "collect-and-remit" provision that allows for e-commerce sales taxes following Florida's law, according to Bloomberg Tax. And Missouri is not far behind. retaildive.com

E-commerce tracking platform AfterShip raises $66M led by Tiger Global
AfterShip launched in 2012 to help online sellers track packages across different carriers, but since then it has built a suite of data analytics

Delivery startup Jokr plans huge NYC expansion

Coral Spring, FL: Store Employees Piece Together Man’s LEGO Theft Scheme
After store employees caught wind of his elaborate scheme to return stolen LEGO sets, a Fort Lauderdale man was arrested for grand theft. On April 18, Coral Springs Police responded to a call from Walmart at 3801 Turtle Creek Drive. When officers arrived, they encountered a man, later identified as Jonray Archibald, 26, who store employees had detained for suspected theft.

According to the report, Walmart employees noticed Archibald acting suspiciously, so they kept a close eye on him as he browsed the store. After some time, he picked out various LEGO sets, put them in his shopping cart, and eventually paid for the items and left the store without incident. However, just minutes later, employees observed him re-enter the store, where he placed the same sets in his cart. But this time, he bypassed all points of sale and attempted to exit without paying.

The report says an employee stopped him at the exit, asking for his receipt, to which Archibald presented the previous receipt from his valid purchase. Not knowing of his previous purchase, the employee allowed Archibald to exit with the stolen merchandise. Archibald once again re-entered the store, but this time, with multiple LEGO sets in hand. He then walked to the customer service area, where he attempted to return the items. By this time, associates had figured out what happened prior, refused the return, and detained Archibald until police arrived.

During an interview with officers, Archibald said he knew what he was doing was wrong and that he planned to return the items he paid for and resell the items he had stolen. In all, the LEGO sets he did not pay for were valued at $849.65. Archibald was placed under arrest and transported to the Broward County Main Jail, where he was later released after posting a $1,000 bond. coralspringstalk.com

Dothan, AL: Woman impersonated Walmart manager to steal merchandise
A woman was arrested for impersonating a Walmart manager and stealing $1,400 of merchandise. Daricka Andrea Mack, 28, of Bessemer, is being charged with third-degree theft of property for the Jan. 15 incident. “She used a scam where she claimed to be a Walmart manager from a different location and she brought $1,419 of miscellaneous merchandise to the register,” Dothan Police Lt. Scott Owens said. “She used a prepaid debit/credit card and used a cash code scheme and left the store without completing the purchase so she essentially stole the merchandise.” Mack was captured on video at the northside Walmart location. She was arrested on Wednesday and her bond was set at $10,000. dothaneagle.com

Wrentham, MA: 'Smash-and-grab' thieves hit Gucci store at Wrentham outlets for a 2nd time
Police are investigating a “smash-and-grab” break-in at the Gucci clothing store at Wrentham Village Premium Outlets, the second in three months. Police Chief Bill McGrath said Friday there were no immediate suspects in the case but it is believed to be the work of organized retail thieves. “We don’t believe it’s a local random act,” McGrath said. “We think it’s related to other thefts at other Gucci stores. We’re working with other law enforcement agencies.” The break-in occurred about 5:15 a.m. Thursday before the Route 1A mall, located near Interstate 495, opened for business. Thieves smashed through the door at the store, quickly grabbed what they could and then fled as alarms sounded, according to McGrath. The incident is similar to a “smash-and-grab” that occurred about 5:30 a.m. Feb. 15 at the Burberry store, in which thousands of dollars in clothing was stolen. In that incident, three suspects smashed through the store’s front door and fled in what was described as an SUV crossover-style vehicle with New York license plates. thesunchronicle.com

Denver, CO: Security Cameras Capture Attempted Smash & Grab At Bike Store
Security cameras captured the moment two hooded suspects rammed a U-Haul truck through an electric bike store in what the business owner described as an attempted “smash and grab.” It happened Thursday morning at eBikes USA, located in Cherry Creek near University Boulevard and 3rd Avenue. The family-owned business sells high-end electric bicycles. The incident took place on Thursday at 4:40 a.m. Video captured by his security camera shows a U-Haul truck back into the storefront, shattering the glass windows. Within seconds, two people in hoodies run into the store and appear to notice the bikes are locked up before leaving. According to Moarefi, at least 16 high end e-bikes were damaged in the incident, and he’s currently unable to be sell them until insurance settles his claim. The store will also need new windows, carpet, and other possible repairs. denver.cbslocal.com

Update: Douglas County, NV: Woman sought in $4,000 make-up theft
On April 13, two women entered the Ulta Beauty Store located at 911 Topsy Lane in Carson Valley Plaza and stole an estimated $4,200 in merchandise. Both women ran from the store when confronted. They left in a white 2006 – 2008 Honda Civic with California license plates. All other leads have been exhausted and the Douglas County Sheriff’s Office is seeking the public’s assistance at this time. Anyone with information is asked to all Investigator Leland Love at 775-782-6299 referring to case No. 21SO10232. recordcourier.com

Oak Brook, IL: Two men steal $3340 in merchandise from Nordstrom in Oakbrook Center

Erie, PA: Suspect in 10 Walmart thefts wanted by Pennsylvania State Police

View ORC Archives

Case Goes Public?
Share it with the industry

Submit your ORC Association News

Visit ORC
Resource Center

Shootings & Deaths

Berwyn, IL: Man charged with murder in fatal stabbing of good Samaritan at grocery store
A 30-year-old man was charged with murder in the fatal stabbing of a good Samaritan at a Berwyn grocery store. Fernando Barrios, 30, was charged with first-degree murder in the stabbing death of Humberto Guzman. He was also charged with attempted murder after officials said he stabbed another man, Kevin Landau. Just before 10:15 a.m. Friday, police were dispatched to Valle’s Produce, on Cermak Road, on the report of a fight.

When police arrived, they observed a man lying on the floor near the check-out area suffering from multiple stab wounds. Additional officers were directed to a nearby alley when they located another man who was stabbed. After a preliminary investigation, police believe a 14-year-old girl went up to her mother, who was working as a cashier, and then asked her how much a bottle of water was. Police said a man, later identified as Barrios, became irate, accused her of cutting the line and began swearing at her. After the girl said she was not cutting, the man punched her several times in the face. The mother then tried to intervene and was struck in the head and ear. A good Samaritan, later identified as Guzman, 32, intervened and protected the woman and her daughter. The suspect began to walk out of the store then circled back and stabbed the good Samaritan multiple times.

Guzman was transported to the hospital where he died a short time later. Relatives said he worked for Vitner’s and was on a delivery at the time of the attack. Guzman was a lovable husband and a new father with a daughter who is just six months old, family said. Another good Samaritan, Landau, attempted to stop the suspect and was stabbed in an alley. He suffered non life-threatening injuries, police said. wgntv.com

Houston, TX: Chick-fil-A manager finds woman shot to death outside store
Saturday morning, the manager of a Chick-fil-A heard gunshots and then found a woman outside the restaurant with gunshot wounds. This happened around 9:40 last night at Westheimer and Lazy Hollow's Chick-fil-A location. Officers got there within minutes and started doing CPR, but that woman did not survive. news.yahoo.com

Las Vegas, NV: 1 dead, 2 injured in Las Vegas Strip C-Store shooting
A man was slain and two others were injured on the Strip after an altercation escalated into gunfire and a foot chase down Las Vegas Boulevard early this morning, according to Metro Police. The suspected gunman, who was in possession of the alleged murder weapon, was promptly taken into custody by responding patrol officers, Lt. Ray Spencer said. The first gunshot blasted about 3 a.m. outside a convenience store near the Harmon Avenue intersection. A group of people were in a confrontation when a man pulled out a gun and fatally wounded a man, Spencer said. lasvegassun.com

Peachtree Corners, GA: Man in his 20s shot, killed outside Gwinnett County convenience store
Police is investigating the death of a man found shot in front of a convenience store in Gwinnett County. Gwinnett police responded to a person shot call at 3330 Peachtree Corners Circle before 1 p.m. When officers arrived, they found a man with a gunshot wound lying between two parked cars in the parking lot. Gwinnett County fire tried to revive the man but he died at the scene. The man’s name has not been released but police said the victim was in his 20s and frequented the store. wsbtv.com

Robberies, Incidents & Thefts

Fresno, CA: Juvenile arrested in smash and grab at Fashion Fair Mall
One person is in custody and two are on the loose after a smash and grab at a jewelry store inside Fashion Fair Mall in Fresno. Police say three people entered Valliani Jewelers at the mall around 3:00 p.m. on Friday. All three were wearing hoods and used what appeared to be a hammer to break the glass merchandise case. Police say they grabbed items from the case and ran from the store. kmph.com

Broomfield, CO: Man uses ax to break open case, steals $9K worth of jewelry
from Macy’s
Broomfield Police are searching for a man who stole just under $9,000 worth of jewelry at a Macy’s on Thursday. Police say the theft happened before noon on Thursday at the Flatirons Crossing Macy’s. Witnesses say they heard several loud “booms” and employees asking the man to stop. “I didn’t know really what it was, and then it just continued like, ‘Boom, boom boom,'” said a witness who wanted to remain anonymous. “I thought it was a gunman.” The suspect broke into a glass case, stole five expensive pieces of jewelry and left in a dark vehicle, according to police. No arrests have been made, and no injuries have been reported. kdvr.com

Dallas, TX: Authorities looking for thieves who have stolen dozens of guns in string of Dallas-area break-ins; 3 stores hit this month

Mount Pleasant, SC: Couple arrested after stealing appliances from Walmart, threatening to shoot employee

Sarasota County, FL: 15-year-old drives stolen SUV into gun store, steals weapons

Youngstown, OH: Jury finds Burger King Manager guilty in $2,000 theft

Suffolk County, NY: Woman arrested after police find stolen Stormtrooper statue

Heidi Haugh named Regional AP Leader for Rite Aid

Rite Aid is pleased to announce that Heidi Haugh has joined the company as a Regional Asset Protection Leader in Delaware. Heidi has over 20 years of experience in Asset Protection, supporting various industries including eyewear, retail and specialty. Prior to joining Rite Aid, Heidi was a Regional AP Manager with Luxottica.

Curt Carotenuto named Regional AP Leader for Rite Aid

Rite Aid is pleased to announce that Curt Carotenuto has joined the company as a Regional Asset Protection Leader, supporting Maryland. Prior to joining Rite Aid, Curt worked at Target for 19 years. During that time he held various positions in both Operations and Assets Protection. Curt holds a Bachelors in Business Administration and Management from Wilmington University.

Submit Your New Hires/Promotions
or New Position
See all the Industry Movement

Feature Your Job Here For 30 Days -
70% Aren't On The Boards
Post your job listing

Featured Job Spotlights

Division Asset Protection - Herald Square & NYC
Brooklyn, NY - posted April 14

As Senior Director, Asset Protection you will serve as subject matter expert in the following areas: shortage, fraud, investigations, legal compliance, and training. Create and implement AP strategies in partnership with VP, Asset Protection. Manage, direct, & deploy District Managers of Investigations (DMIs) to support districts & stores...

Regional Asset Protection Manager
Phoenix, Dallas, Denver and Houston - posted April 22

Victra is the leading exclusive, premium retailer for Verizon with a mission of connecting technology to life in the most trusting and profitable way. As the Regional Asset Protection Manager, you will be very logical, efficient, orderly, and organized in always safeguarding our company assets from losses due to theft or fraud...

Area Loss Prevention Manager
Sacramento, CA - posted April 20

Our Area Loss Prevention Managers ensure safe and secure stores through the objective identification of loss and risk opportunities. Our Area Loss Prevention Managers plan and prioritize to provide an optimal customer experience to their portfolio of stores. They thrive on supporting and building high performance teams that execute with excellence...

Corporate Security Manager
Calabasas, CA - posted April 6

The Corporate Security Manager will, among other things, (a) be responsible for ensuring a safe and secure environment for our employees, vendors, and visitors, (b) develop, manage, execute and continuously improve corporate security processes and protocols, and (c) lead a team of security specialists at our corporate offices...

Regional Asset Protection Manager
Roanoke or Richmond, VA - posted March 16

To provide support for loss prevention and safety for restaurants in assigned regions and protect the assets of the company by leveraging partnerships at all levels of the company and utilizing existing Asset Protection and Restaurant Operating systems and processes...

Regional LP & Safety Manager
Denver, CO - posted Feb. 9

The Regional Loss Prevention & Safety Manager implements Risk Management and Loss Prevention objectives within assigned region. The position will provide assistance and training to the field operations teams to address specific Risk Management and Loss Prevention issues within an assigned span of control. Read job description here

Manager of Asset Protection & Safety Operations
Rockaway, NJ - posted Feb. 4

The Manager of Asset Protection & Safety Operations is responsible for the control and reduction of shrinkage and safety compliance for Party City Holdings, by successfully managing Asset Protection (AP) Safety programs and reporting...

Featured Jobs

JOB TITLE	COMPANY	CITY/STATE	DATE ADDED
Vice President
Associate VP, AP	Bath & Body Works	Columbus, OH	April 19
Director
Dir. AP Investigations	Bloomingdale's	Long Island City, NY	March 16
Sr. Dir. Risk Management, LP & Safety	Goodwill of Central Florida	Orlando, FL	April 6
Dir. Safety/Risk Mgmt.	Goodwill of SE Louisiana	New Orleans, LA	April 2
Sr. Dir. LP	Harbor Freight Tools	Calabasas, CA	January 28
Sr. Dir. AP	Macy's	Herald Square & NYC	April 6
Executive Dir. AP	Panda Restaurant Group	Rosemead, CA	January 28
Dir. of Loss Prevention	Parker's C-Stores	Savannah, GA	June 3
Dir. Enterprise Risk Management	Publix Employees Federal Credit Union	Lakeland, FL	April 20
Director, AP Finance & Analytics	Rite Aid	United States	January 26
Dir. LP Insight & Intelligence	Sally Beauty	Denton, TX	March 26
Exec Dir-Corporate Security	Verizon	Basking Ridge, NJ	March 9
Dir. AP Solutions	Walgreens	Deerfield, IL	January 28
Corporate/Senior Manager
AP Operation Manager	Follett Corporation	Westchester, IL	January 7
Group Investigations Manager	JCPenney	Plano, TX	January 19

View Featured Jobs | Post Your Job

Being engaged in the business of your retailer is a critical element for every Loss Prevention executive. For decades, our industry has often been accused of being silo'ed and separate from the operators and the merchants. This separateness in many cases ultimately leads to a disconnect, a sense that we aren't part of the team. Which in actuality, regardless of your performance, it can lead to your job being eliminated or just you being replaced with someone new. So the real question is: How do you become engaged in the business and truly add value to the company's success beyond reducing shrink? And then having the courage to go make it happen. We all tend to stay in our comfort zones and remain safe. At least that's what we think. But at the end of the day, it's that comfort zone that can actually increase your risk. So the next time you're in a corporate meeting or traveling stores with your operators or merchants, go beyond with your comments and opinions - take a risk - add some value - help them run the business - you might be surprised.

Just a Thought,
Gus

Post Your Tip or Advice!
(content subject to approval)

Virtual Cybersecurity & Fraud Summit: Midwest
April 27-28, 2021

RFID Journal Digital Summit
May 10-13

NRF Retail Converge
June 21-25, 2021

RILA AP Conference
August 17-20
(In-Person)

RH-ISAC Cyber Intelligence Summit
Sept. 28-29

See More Events

Recruiting?
Get your job e-mailed to everyone... everyday
Post on our Featured Jobs Board!

Not getting the Daily?
Is it ending up in your spam folder?
Please make sure to add d-ddaily@downing-downing.com to your contact list, address book, trusted sender list, and/or company whitelist to ensure you receive our newsletter.
Want to know how? Read Here

SUBSCRIBE

FEEDBACK

www.downing-downing.com

Advertise With The D&D Daily