Ongoing Attack Stealing Credit Cards From Over A Hundred Shopping Sites

Swati Khandelwal reports:

Researchers from Chinese cybersecurity firm Qihoo 360’s NetLab have revealed details of an ongoing credit card hacking campaign that is currently stealing payment card information of customers visiting more than 105 e-commerce websites.

While monitoring a malicious domain, www.magento-analytics[.]com, for over last seven months, researchers found that the attackers have been injecting malicious JS scripts hosted on this domain into hundreds of online shopping websites.

[…]

The technique used by the group behind this campaign is not new and exactly same as what the infamous MageCart credit card hacking groups used in hundreds of their recent attacks including Ticketmaster, British Airways, and Newegg.

However, NetLab researchers have not explicitly linked this attack to any of the MageCart groups.

Read more on The Hacker News.

About the author: Dissent