Magecart criminals caught stealing with their poker face on

This blog post details the curious case of a web skimmer encountered in a poker application.

Read more

No summer break for Magecart as web skimming intensifies

Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months.

Read more

No man’s land: How a Magecart group is running a web skimming operation from a war zone

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Read more

Skimmer acts as payment service provider via rogue iframe

Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form.

Read more

GitHub hosted Magecart skimmer used against hundreds of e-commerce sites

Magecart threat actors upload their skimming code onto GitHub in the latest attack against Magento websites.

Read more

New Golang brute forcer discovered amid rise in e-commerce attacks

E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force.

Read more

How to protect your data from Magecart and other e-commerce attacks

Magecart and other criminal groups are causing mayhem by stealing payment information from e-commerce sites, big and small. Learn how they are doing it and how to mitigate against it.

Read more

New Website Ransomware Variant Demands $999

Website owners are targeted with ransomware, this one asking for $999.

Read more

Select your language