The attackers sought credentials and other personal information through a phishing scheme, researchers said
A fake login page looks legitimate since it is served up by Google over SSL, Symantec said
Attackers changed the DNS configuration of vulnerable home routers to mount man-in-the-middle attacks against users in Poland.
Other cryptographers were also targeted by the same attackers, the researcher said
Duck now: We're already knee-deep in data breaches, and this year also brings the imminent demise of Windows XP support and the certain rise of mobile malware.
The low-key theft campaign is believed to have stolen $550,000 or more from about 400 victims, police say.
The move by Target comes after a breach of its customers' data.
Prisons around the world this year made way for techie criminals alongside the more garden variety murderers, thieves, and schemers.
Websense identifies the top come-ons and scams that still seem to work.
Twitter, Facebook, and ADP said they've reset some users' accounts.