Expert Comments

Fitness Depot Breach – Comments

Expert(s): Security Experts
Expert(s): Security Experts

In a breach notification letter, Canadian retailer Fitness Depot, the largest specialty exercise equipment retailer in Canada with 40 stores nationwide, notified its customers that their personal and financial information was stolen following a breach of its e-commerce platform, which appears to be a Magecart attack.

Experts Comments

June 09, 2020
Ameet Naik
Security Evangelist
PerimeterX
The attackers in this case redirected users to a fake checkout page that was completely controlled by the malicious party. This is a common technique seen in Magecart attacks where the attackers are able to completely bypass all security controls present on the legitimate website, such as CSP or iframes. Businesses need to ensure they adequately protect their web infrastructure and don’t rely on their ISP for this. Consumers shopping online need to be on the alert for errors during the.....Read More
The attackers in this case redirected users to a fake checkout page that was completely controlled by the malicious party. This is a common technique seen in Magecart attacks where the attackers are able to completely bypass all security controls present on the legitimate website, such as CSP or iframes. Businesses need to ensure they adequately protect their web infrastructure and don’t rely on their ISP for this. Consumers shopping online need to be on the alert for errors during the checkout process, which could indicate a compromise.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT

You may also like

Panasonic Becomes Latest Victim Of Data Breach – Security Expert...

Clearview’s £17 Million Fine For Processing 10+ Billion Images Is...

Booz Allen Report On CISOs And China Quantum Computing Risks,...

Experts Reactions On Sky Broadband Hack Warning

Ransomware Set To Break Records This Black Friday 2021

Security Expert On Apple Suing NSO Group

Meta Delays Plans To Rollout End-to-end Encryption

NCSC Issues Black Friday Warning To Tetailers

How The Zelle Fraud Scam Steals Your Bank Credentials

GoDaddy Data Breach Impacts Over A Million Users, Experts Reactions

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts