Hundreds of counterfeit online shoe stores injected with credit card skimmer

A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data.

Read more

There’s an app for that: web skimmers found on PaaS Heroku

Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data.

Read more

Magecart Group 4: A link with Cobalt Group?

Malwarebytes threat intel partnered with security firm HYAS to connect the dots between Magecart Group 4 and the advanced threat group Cobalt.

Read more

No summer break for Magecart as web skimming intensifies

Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months.

Read more

No man’s land: How a Magecart group is running a web skimming operation from a war zone

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Read more

Select your language