{"id":16560,"date":"2019-10-10T10:52:15","date_gmt":"2019-10-10T18:52:15","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/10\/10\/news-10299\/"},"modified":"2019-10-10T10:52:15","modified_gmt":"2019-10-10T18:52:15","slug":"news-10299","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/10\/10\/news-10299\/","title":{"rendered":"VB2019 preview: Inside Magecart: the history behind the covert card-skimming assault on the e-commerce industry"},"content":{"rendered":"

Half a decade ago, breaches of point-of-sale (POS) systems were a real plague, especially in North America, with the 2013 Target <\/em>breach<\/a> perhaps the best known example.<\/p>\n

Though credit card theft through POS hacks hasn’t completely disappeared, today’s skimmers largely act online, using JavaScript to insert skimmers into websites’ payment pages.<\/p>\n

The more than a dozen different groups behind these breaches are referred to by the umbrella term ‘Magecart’, a name first used by RiskIQ<\/em> and made popular through a 2016 joint report<\/a> by RiskIQ<\/em> and Flashpoint<\/em>. Different groups use different tactics, from targeted attacks against big websites to automatically scanning for known CMS vulnerabilities, to compromising third-party JavaScript code loaded on such websites.<\/p>\n

\"ecosystem_image1.png\"A rich underground economy exists around all the different steps needed to monetize a breach.<\/span><\/p>\n

At VB2019<\/a> in London, RiskIQ<\/em> researcher Yonathan Klijnsma will present a paper on Magecart<\/a>, in which he discusses the history of web skimmers and profiles six Magecart groups to provide a good overview of the different modi operandi of the various groups.<\/p>\n

Don’t forget to book your ticket for VB2019<\/a> to see Yonathan and dozens of other speakers discuss the latest trends in threat intelligence. And if you are quick, the call for last-minute papers<\/a> for the conference remains open for submissions until the end of this weekend!<\/p>\n

\"VB2019-London-withdate-325w.jpg\"<\/a><\/p>\n

outertext
https:\/\/www.virusbulletin.com\/rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"


We preview the VB2019 paper by RiskIQ researcher Yonathan Klijnsma on the Magecart web skimming attacks. <\/p>\n

Read more<\/a> <\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[23177,10378,23176],"tags":[],"class_list":["post-16560","post","type-post","status-publish","format-standard","hentry","category-magazine","category-security","category-virusbulletin"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16560","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=16560"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16560\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=16560"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=16560"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=16560"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}