Researchers have observed a highly-sophisticated self-cleaning and self-destructing skimmer on the popular hardware tool website Greenworks. Since the pandemic lockdown there has been an increase in people taking on homeware and gardening improvements.
Magecart attacks are continuing to become more sophisticated as seen with the self-cloaking capabilities and anti-tampering protection used in this attack on Greenworks\’ site. Removing the DOM interface to keep the malicious code hidden is yet another malicious tactic. While it helps to stay current with security patches and software updates, businesses need to gain visibility into the client-side in order proactively alert them about Magecart attacks, and significantly shorten the mean time to mitigation.