2024 Credit Card Theft Season Arrives

Nov. 8, 2024, 10:22 a.m.

Description

As the holiday shopping season approaches, eCommerce website owners need to be vigilant against credit card stealing malware, known as 'MageCart'. Attackers focus their efforts in the last quarter to maximize profits from stolen card details. Analysis of recent malware samples reveals sophisticated techniques, including WebSocket skimmers, jquery hex skimmers, and r.blob skimmers. These skimmers use obfuscation methods like XOR encryption and base64 encoding to hide their malicious code. The Smilodon hacking group has evolved its tactics, now using randomized plugin names in WordPress. Website owners are advised to implement security measures such as two-factor authentication, strong passwords, and keeping software up-to-date to protect against these threats.

External References

https://blog.sucuri.net/2024/11/2024-credit-card-theft-season-arrives.html
https://otx.alienvault.com/pulse/672d43d7897c1602c37a2307
Tags
wordpress
magento
credit card theft
2024-11-07
magecart
websocket skimmer
jquery hex skimmer
holiday shopping season
r.blob skimmer
ecommerce security

Date

  • Created: Nov. 7, 2024, 10:48 p.m.
  • Published: Nov. 7, 2024, 10:48 p.m.
  • Modified: Nov. 8, 2024, 10:22 a.m.

Attack Patterns

  • r.blob skimmer
  • jquery hex skimmer
  • WebSocket skimmer
  • MageCart
  • Smilodon

Additional Informations

  • Retail