Browsing tag
Cybersecurity researchers have discovered a credit card skimmer that’s concealed within a fake Meta Pixel tracker script in an attempt to evade detection. Sucuri said that the malware is injected into websites through tools that allow for custom code, such as WordPress plugins like Simple Custom CSS and JS or the “Miscellaneous Scripts” section of […]
Adobe on Sunday rolled out patches to contain a critical security vulnerability impacting its Commerce and Magento Open Source products that it said is being actively exploited in the wild. Tracked as CVE-2022-24086, the shortcoming has a CVSS score of 9.8 out of 10 on the vulnerability scoring system and has been characterized as an […]
E-commerce platforms in the U.S., Germany, and France have come under attack from a new form of malware that targets Nginx servers in an attempt to masquerade its presence and slip past detection by security solutions. “This novel code injects itself into a host Nginx application and is nearly invisible,” Sansec Threat Research team said […]
Researchers have unearthed a new remote access trojan (RAT) for Linux that employs a never-before-seen stealth technique that involves masking its malicious actions by scheduling them for execution on February 31st, a non-existent calendar day. Dubbed CronRAT, the sneaky malware “enables server-side Magecart data theft which bypasses browser-based security solutions,” Sansec Threat Research said. The […]
A warning has been issued by the Concord, California-based alcoholic beverages retailer BevMo informing its customers about a data breach that its online store experienced between 2 August and 26 September. During the attack, credit card data of its customers was exposed. “BevMo takes the privacy of our customers’ personal information seriously and we deeply […]
Sotheby’s, an American multinational corporation and Auction House has become another victim of Magecart attack after hackers gained access to Sotheby’s home website and inserted a card-skimming code aiming at customers’ credit card and banking data. Although Sotheby’s detected the intrusion on 10th October 2018 the malware was present on its website and stealing personal and financial data of […]
Hackers using Google Adwords & Google Sites to spread malware VisionDirect, one of Europe’s largest online optical retailer that deals with contact lenses and eye care related products has announced that a number of its domains have suffered a data breach in which hackers stole customers’ credit card and banking data. The data breach, according […]
Magecart, known for their e-commerce payment card-skimming that has recently attacked British Airways, Ticketmaster, Newegg, and other prominent companies, comprises of six major active cybercriminal groups, according to a new joint research report. All of these groups use the same skimmer toolset, but they rely on different strategies and in some cases have evolved the […]
The airline has published a new statement about the security incident Experts in ethical hacking reported last 6 September that British Airways had suffered a security breach that led to data theft of about 380,000 of its customers, including banking and personal data. In recent days, British Airways placed an article on its website explaining details of […]
More than 5K cases of publicly reported security incidents per minute are registered too Every 60 seconds $1.1M USD is lost because of cybercrime. This alarming figure has been calculated by cyber security organization specialists who compiled their own and third-source researches to analyze the malicious behavior of hackers. The resulting report, called “Evil Internet Minute”, […]
Magecart targets Magento, OpenCart and the Powerfront CMS. Over 100 online stores have been compromised with a new type of web malware called Magecart that secretly logs data entered on checkout pages and sends it to the attacker’s server. First signs of this malware appeared in March 2016, but activity started to pick up in […]