DIY Tool Website Greenworks Hacked By Self-Destructing Web-Skimmer – Expert Reaction

Researchers have observed a highly-sophisticated self-cleaning and self-destructing skimmer on the popular hardware tool website Greenworks. Since the pandemic lockdown there has been an increase in people taking on homeware and gardening improvements.

Experts Comments

June 11, 2020
Ameet Naik
Security Evangelist
PerimeterX
Magecart attacks are continuing to become more sophisticated as seen with the self-cloaking capabilities and anti-tampering protection used in this attack on Greenworks' site. Removing the DOM interface to keep the malicious code hidden is yet another malicious tactic. While it helps to stay current with security patches and software updates, businesses need to gain visibility into the client-side in order proactively alert them about Magecart attacks, and significantly shorten the mean time to .....Read More
Magecart attacks are continuing to become more sophisticated as seen with the self-cloaking capabilities and anti-tampering protection used in this attack on Greenworks' site. Removing the DOM interface to keep the malicious code hidden is yet another malicious tactic. While it helps to stay current with security patches and software updates, businesses need to gain visibility into the client-side in order proactively alert them about Magecart attacks, and significantly shorten the mean time to mitigation.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.