Expert Comments

Garmin SA Shopping Portal Breach Leads To Payment Data Theft

Expert(s): Security Experts
Expert(s): Security Experts

Garmin Southern Africa (Garmin SA) has disclosed in a series of notifications sent to its customers that payment and sensitive personal information were stolen from orders placed on the shop.garmin.co.za shopping portal.

“We recently discovered theft of customer data from orders placed through shop.garmin.co.za (operated by Garmin South Africa) that compromised your personal data related to an order that you placed through the website,” said Jennifer Van Niekerk, South Africa Managing Director. The compromised data was limited to only Garmin’s South Africa site, and contained payment information, including the number, expiration date and CVV code for your payment card, along with your first and last name, physical address, phone number and email address.”

While the cause of the breach is not mentioned in the notification email to the impacted Garmin SA customers, there are signs that the shop.garmin.co.za portal was the victim of a Magecart group.

Experts Comments

September 16, 2019
Peter Draper
Technical Director, EMEA
Gurucul
A number of companies have been caught by Magecart recently, British Airways and Ticketmaster to name but two. Companies taking payments through their website need to limit access for scripts in their websites to offer the best protection for user data being entered. One of the key elements of this attack is that the bad actors need to send the data to their own servers to actually collect the information. UEBA and Network Analytics can be used to identify abnormal traffic, such as the sudden.....Read More
A number of companies have been caught by Magecart recently, British Airways and Ticketmaster to name but two. Companies taking payments through their website need to limit access for scripts in their websites to offer the best protection for user data being entered. One of the key elements of this attack is that the bad actors need to send the data to their own servers to actually collect the information. UEBA and Network Analytics can be used to identify abnormal traffic, such as the sudden outbound traffic from the website servers to unknown external devices and in combination with automated security controls can stop the exfiltration of data as soon as it is identified. This reduces the impact and the number of users affected whilst alerting security teams to the issue and allowing them to focus their attention on finding and removing the malicious code.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT
0
FacebookTwitterLinkedinWhatsappEmail

You may also like

iPhone Bug Identified by Researcher, Patch Now Advised by Expert

Security Expert Re: New NIST Application Security Requirements – One...

Critical Flaw in vCenter Server Could Give Hackers Infrastructure Access

Malicious URLS Slipping Past Security Vendors, Experts Weigh In

Expert Comment: VMware Vulnerabilities Ripe For Exploitation

Comment: CISA, FBI, And NSA Release Joint Cybersecurity Advisory On Conti Ransomware

Google And Facebook For Failing To Tackle Online Fraud

MoD Shares Afghanistan Interpreter’s Emails & PII

APP Fraud Is A Simple Yet Extremely

U.S. Targets Crypto-Ransomware Payments with Sanctions, Cybersecurity Experts Weigh In

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy