Collaborate Disseminate
Researchers say attackers are embedding malicious code in poorly configured Magento sites that hides stolen payment card data in images. Continue reading Attackers Hiding Stolen Credit Card Numbers in Images
A week ago, RiskIQ researchers revealed that over 100 online shops have, at one point in the last six months, been injected with malicious JavaScript code that exfiltrates payment card information users enter to pay for their shopping. But, as it turns out, that was just the tip of the iceberg. The number of compromised online shops keeps rising Willem de Groot, co-founder of byte.nl, a webhosting provider for (among other things) Magento shops, has … More → Continue reading 6000+ compromised online shops – and counting
Since March 2016 (and possibly even earlier), someone has been compromising a variety of online shops and injecting them with malicious JavaScript code that exfiltrates payment card and other kinds of information users entered to pay for their shopping. According to RiskIQ and ClearSky researchers, the campaign – which they dubbed Magecart – is still ongoing, albeit at a reduced scope and pace. Since March, the threat actor behind it has compromised more than 100 … More → Continue reading 100+ online shops compromised with payment data-stealing code
Researchers estimate thousands of ecommerce sites are under attack by a single threat actor that has infected servers with a web-based keylogger. Continue reading Web-Based Keylogger Used to Steal Credit Card Data from Popular Sites
Ransomware dubbed KimcilWare is targeting websites running the e-commerce platform Magento and encrypting website files. Continue reading New Ransomware KimcilWare Targets Magento Websites