6 ways hackers are targeting retail businesses
Whether it’s a high-volume shopping season or not, retail businesses are at risk from cybercriminals in a number of ways. Learn how hackers target retailers and shoppers alike.
New evasion techniques found in web skimmers
As Magecart credit card skimmers become exposed by security researchers, their authors are refining evasion techniques to go undetected.
Hundreds of counterfeit online shoe stores injected with credit card skimmer
A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data.
There’s an app for that: web skimmers found on PaaS Heroku
Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data.
Web skimmer phishes credit card data via rogue payment service platform
Threat actors combine phishing with a web skimmer to create a devious scheme designed to lift credit card data from unaware shoppers.
The forgotten domain: Exploring a link between Magecart Group 5 and the Carbanak APT
Bread crumbs left behind open up a possible connection between Magecart Group 5 and Carbanak.
Magecart criminals caught stealing with their poker face on
This blog post details the curious case of a web skimmer encountered in a poker application.
No summer break for Magecart as web skimming intensifies
Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months.
No man’s land: How a Magecart group is running a web skimming operation from a war zone
We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.
Magecart skimmers found on Amazon CloudFront CDN
Not all breaches on Content Delivery Networks (CDNs) result in supply-chain attacks, yet, they are often a forgotten entry point for attackers to slip in malicious code, such as web skimmers.
