Viewers on the East Coast are getting some off-putting news after yet one more retailer has disclosed malware in its networks pinching card numbers. This time the victim is Wawa, with its series of gas stations and convenience stores that stretches all over different states. A letter from Chris Gheysens (CEO of the firm) clarifies that the firm found the malware on December 10, 2019, in its transaction processing systems and thinks it impacted possibly all Wawa stores from March 4, 2019, even though some were not impact at all and some were impacted later. If you employed your card at the gas pump or payment terminal, then the hack possibly got your data. It seems that store ATMs were unaffected.

As per the firm, the data leaked “is restricted to payment card data, comprising credit and debit card numbers, cardholder names, and expiration dates, but does not comprise CVV2 numbers or PIN numbers.” The statement also claims it is not aware of unauthorized employment of payment data from the hack, but has launched out the normal warnings and offer of free monitoring services for credit. Also in 2014 the FBI was forecasting these kinds of cases might become more widespread, and they have, impacting everybody from Forever 21 to Target to Wendy’s.

On a related note, it’s not only botnets that can hack computers for evil ends. Scientists at Cisco’s Talos and Microsoft have verified a new malware strain, Nodersok that utilizes web applications to turn systems into proxies for malevolent web traffic. The hack gets people to operate an HTA file via a nasty download or ad, launching a complicated series of events. JavaScript in the HTA installs an individual JavaScript file, and that in response churns a PowerShell instruction that operates and installs an entire series of tools.