Shopped recently in a small online store? Check this list to see if it was one of 570 websites infected with card-skimming Magecart

Shopped recently in a small online store? Check this list to see if it was one of 570 websites infected with card-skimming Magecart

2020-07-07 23:35

The team at security biz Gemini Advisory said a long-running criminal gang dubbed Keeper compromised hundreds of online shopping sites over the past three years to install the software nasty.

We're told 85 per cent were infected after the hackers exploited known flaws in the open-source Magento content management system popular among e-commerce businesses and used by the sites.

Also if you fear you've shopped at an infected site, and handed over your card details to crooks, check the list, too.

Gemini Advisory reckons the 570 sites were able to feed the attackers roughly 184,000 cards from July 2018 to April 2019.

The panel was hosted on a single server that housed the Keeper crew's entire Magecart operation, we're told: it hosted some 137 domains - 64 dedicated to injecting malicious code into sites, and another 73 tasked with handling exfiltration of netizens' card data - including the aforementioned dot-org.

News URL

https://go.theregister.com/feed/www.theregister.com/2020/07/07/keeper_crew_magecart/

#magecart #online