web hacks – Page 3 – WindowsTechs.com

6000+ compromised online shops – and counting

Posted on October 13, 2016 by Zeljka Zorz

A week ago, RiskIQ researchers revealed that over 100 online shops have, at one point in the last six months, been injected with malicious JavaScript code that exfiltrates payment card information users enter to pay for their shopping. But, as it turns out, that was just the tip of the iceberg. The number of compromised online shops keeps rising Willem de Groot, co-founder of byte.nl, a webhosting provider for (among other things) Magento shops, has … More → Continue reading 6000+ compromised online shops – and counting→

100+ online shops compromised with payment data-stealing code

Posted on October 7, 2016 by Zeljka Zorz

Since March 2016 (and possibly even earlier), someone has been compromising a variety of online shops and injecting them with malicious JavaScript code that exfiltrates payment card and other kinds of information users entered to pay for their shopping. According to RiskIQ and ClearSky researchers, the campaign – which they dubbed Magecart – is still ongoing, albeit at a reduced scope and pace. Since March, the threat actor behind it has compromised more than 100 … More → Continue reading 100+ online shops compromised with payment data-stealing code→

Phineas Fisher records, publishes latest attack

Posted on May 20, 2016 by Zeljka Zorz

Phineas Fisher, the hacker behing the Gamma International and Hacking Team breaches and data leaks, is at it again. This time his target was Sindicat de Mossos d’Esquadra (the Catalan police union). He defaced the union’s website, plundered their web server, published personal information about police officers (including their badge numbers), and hijacked their Twitter account. What’s more, he recorded his attack against the website and server and made the recording public, as a tutorial … More → Continue reading Phineas Fisher records, publishes latest attack→

Solutions for the hijacked websites problem

Posted on April 19, 2016 by Zeljka Zorz

According to a group of researchers from Google and University of California Berkeley, roughly 16,500 new sites get hijacked each week and start serving drive-by-malware or scam content. Obviously, they need to be cleaned, and the research group attempted to find out which type of notification will spur webmasters to do so more quickly and more effectively. They tried different combinations of browser, search, and direct webmaster notifications, and it should not come as a … More → Continue reading Solutions for the hijacked websites problem→