Expert Comments

Hundreds Of Counterfeit Online Shoe Stores Injected With Credit Card Skimmer – Comments

Expert(s): Security Experts
Expert(s): Security Experts

Malwarebytes researchers have discovered a credit card skimmer injected into hundreds of fraudulent sites selling brand name shoes. Many of these sites have been infected with malware that skims credit card information during the checkout process. All of the sites were running outdated versions of the Magento e-commerce platform and the PHP programming language it utilizes.

Experts Comments

Dot Your Expert Comments
Ameet Naik
December 12, 2019
Security Evangelist
PerimeterX

Short-lived counterfeit sites simply have no incentive to protect user data like credit card numbers.
Digital skimming and Magecart attacks are the biggest threat to even legitimate e-commerce sites. Short-lived counterfeit sites simply have no incentive to protect user data like credit card numbers. They use off-the-shelf platforms like Magento to quickly build an e-commerce site, promote it until the inventory runs out and then shut it down. This is a ripe playground for Magecart gangs since there are so few security controls. By compromising just one platform like Magento, they can.....Read More
Digital skimming and Magecart attacks are the biggest threat to even legitimate e-commerce sites. Short-lived counterfeit sites simply have no incentive to protect user data like credit card numbers. They use off-the-shelf platforms like Magento to quickly build an e-commerce site, promote it until the inventory runs out and then shut it down. This is a ripe playground for Magecart gangs since there are so few security controls. By compromising just one platform like Magento, they can infect hundreds of sites without much extra effort. In fact, our research shows multiple Magecart attackers operating on some e-commerce sites at the same time.  Read Less

Dot Your Expert Comments


Only for registered and approved experts. Please register before providing comments. Register here
* By using this form you agree with the storage and handling of your data by this web site.
Submit
0
FacebookTwitterLinkedinWhatsappEmail

You may also like

15 Schools Hit By Cyberattack In Nottinghamshire

Qualys Hit With Ransomware And Customer Invoices Leaked

Experts Reaction On PrismHR Hit By Ransomware Attack

Expert Insight On Ryuk’s Revenge: Infamous Ransomware Is Back And...

ObliqueRAT Trojan Lurks On Compromised Websites – Experts Comments

Microsoft Multiple 0-Day Attack – Tenable Comment

Experts Reaction On Malaysia Airlines 9 Years Old Data Breach

IoT Security In The Spotlight, As Research Highlights Alexa Security...

Oxfam Australia Confirms ‘Supporter’ Data Accessed In Cyber Attack

Expert Reaction On Solarwinds Blames Intern For Weak Passwords