#Magecart ora abusa di siti web legittimi per rubare #datipersonali e carte di credito: i dettagli https://www.cybersecurity360.it/news/magecart-ora-abusa-di-siti-web-legittimi-per-rubare-dati-personali-e-carte-di-credito-i-dettagli/

#Magecart ora abusa di siti web legittimi per rubare dati personali e carte di credito: i dettagli...
Il mio contributo per Cybersecurity360
#CyberSecurity #hacking https://www.cybersecurity360.it/news/magecart-ora-abusa-di-siti-web-legittimi-per-rubare-dati-personali-e-carte-di-credito-i-dettagli/

So just WHAT are online shoppers supposed to do now? 🤷‍♀️

https://thehackernews.com/2023/04/attention-online-shoppers-dont-be.html

>An ongoing #Magecart campaign has attracted the attention of #cybersecurity researchers for leveraging realistic-looking fake payment screens to capture sensitive data entered by unsuspecting users.

>"The threat actor used original logos from the compromised store and customized a web element known as a #modal to perfectly #hijack the checkout page," Jérôme Segura, director of threat intelligence at Malwarebytes, said. "The remarkable thing here is that the #skimmer looks more authentic than the original payment page."

>These digital skimming attacks, also called #formjacking, traditionally leverage various kinds of #JavaScript trickery to siphon sensitive information from website users.

>The latest iteration, as observed by Malwarebytes on an unnamed Parisian travel accessory store running on the PrestaShop CMS, involved the injection of a skimmer called #Kritec to intercept the checkout process and display a fake payment dialog to victims.

>"Discerning whether an online store is trustworthy has become very difficult and this case is a good example of a skimmer that would not raise any suspicion," Segura said.

I mean, it seems like an average consumer would have no practicable defence. It seems like catching fish in a barrel. 😮

ALERT: A new #Magecart campaign is using fake payment screens that are hard to detect and look more authentic than the original pages, in order to capture sensitive data from unsuspecting users.

https://thehackernews.com/2023/04/attention-online-shoppers-dont-be.html

#cybersecurity #hacking

@campuscodi and that's how #MageCart - Style #crackers get access into their victims' infrastructure...

https://youtu.be/eaHsvqqb40w?t=22

Hacker stole credit cards from the website of Canada’s largest alcohol retailer LCBO https://securityaffairs.com/140823/data-breach/lcbo-magecart-attack.html #CanadianLiquorControlBoardofOntario #informationsecuritynews #ITInformationSecurity #PierluigiPaganini #SecurityAffairs #BreakingNews #SecurityNews #hackingnews #CyberCrime #DataBreach #Cybercrime #databreach #MageCart #Hacking #malware #LCBO

📛 Almost 2,000 individual online stores were hacked due to the outdated #Magento 1 platform! ⚠️

https://t.co/bIAglL4LRR

#CyberSecurity #Hacking #Magecart #Malware

Websites of eight US cities poisoned by malware skimming the credit card details of residents https://www.grahamcluley.com/websites-usa-cities-card-skimming/ #creditcard #databreach #Click2Gov #Dataloss #MageCart #Malware

Credit-card skimming malware hit websites as Coronavirus lockdown forced retailers to close high street stores https://businessinsights.bitdefender.com/credit-card-skimming-malware-hit-websites-as-coronavirus-lockdown-forced-retailers-to-close-high-street-stores#new_tab #Vulnerability #databreach #Guestblog #Dataloss #Claire's #MageCart #Malware

FBI warns hackers are planting card skimmers on online stores running a vulnerable Magento plugin https://www.grahamcluley.com/fbi-warns-hackers-magento-plugin/ #Vulnerability #vulnerability #MageCart #Malware #Magento #plugin #Adobe

More business websites hit by credit-card skimming malware https://www.grahamcluley.com/more-business-websites-hit-by-credit-card-skimming-malware/ #databreach #Guestblog #Dataloss #MageCart #Malware

A Magecart hacking gang may have been caught by police for the first ever time https://www.grahamcluley.com/a-magecart-hacking-gang-may-have-been-caught-by-police-for-the-first-ever-time/ #Law&order #MageCart #Malware

Hackers steal credit card details from Sweaty Betty customers https://hotforsecurity.bitdefender.com/blog/hackers-steal-credit-card-details-from-sweaty-betty-customers-21888.html#new_tab #Vulnerability #vulnerability #databreach #Guestblog #Dataloss #MageCart #Malware