Thursday, May 2, 2024
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Magento

MalwareBytes Security 

No man’s land: How a Magecart group is running a web skimming operation from a war zone

admin , , , , , , , , , , , ,

Credit to Author: Threat Intelligence Team| Date: Thu, 18 Jul 2019 15:00:13 +0000

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Categories:

Tags:

(Read more…)

The post No man’s land: How a Magecart group is running a web skimming operation from a war zone appeared first on Malwarebytes Labs.

Read more
MalwareBytes Security 

Skimmer acts as payment service provider via rogue iframe

admin , , , , , , , , , ,

Credit to Author: Jérôme Segura| Date: Tue, 21 May 2019 15:38:42 +0000

Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form.

Categories:

Tags:

(Read more…)

The post Skimmer acts as payment service provider via rogue iframe appeared first on Malwarebytes Labs.

Read more
MalwareBytes Security 

GitHub hosted Magecart skimmer used against hundreds of e-commerce sites

admin , , , ,

Credit to Author: Jérôme Segura| Date: Fri, 26 Apr 2019 16:06:12 +0000

Magecart threat actors upload their skimming code onto GitHub in the latest attack against Magento websites.

Categories:

Tags:

(Read more…)

The post GitHub hosted Magecart skimmer used against hundreds of e-commerce sites appeared first on Malwarebytes Labs.

Read more
MalwareBytes Security 

New Golang brute forcer discovered amid rise in e-commerce attacks

admin , , , , , , , ,

Credit to Author: Jérôme Segura| Date: Tue, 26 Feb 2019 16:00:08 +0000

E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force.

Categories:

Tags:

(Read more…)

The post New Golang brute forcer discovered amid rise in e-commerce attacks appeared first on Malwarebytes Labs.

Read more
MalwareBytes Security 

How to protect your data from Magecart and other e-commerce attacks

admin , , , , , , ,

Credit to Author: Malwarebytes Labs| Date: Fri, 28 Sep 2018 15:00:57 +0000

Magecart and other criminal groups are causing mayhem by stealing payment information from e-commerce sites, big and small. Learn how they are doing it and how to mitigate against it.

Categories:

Tags:

(Read more…)

The post How to protect your data from Magecart and other e-commerce attacks appeared first on Malwarebytes Labs.

Read more
Independent Krebs 

Trump’s Dumps: ‘Making Dumps Great Again’

admin , , , , , , , , , , , , , , , ,

Credit to Author: BrianKrebs| Date: Fri, 26 May 2017 04:45:24 +0000

It’s not uncommon for crooks who peddle stolen credit cards to seize on iconic American figures of wealth and power in the digital advertisements for these shops that run continuously on various cybercrime forums. Exhibit A: McDumpals, a hugely popular carding site that borrows the Ronald McDonald character from McDonald’s and caters to bulk buyers. Exhibit B: Uncle Sam’s dumps shop, which wants YOU! to buy American. Today, we’ll look at an up and coming credit card shop called Trump’s-Dumps, which invokes 45’s likeness and promises to “make credit card fraud great again.”

Read more