Today > | 2 Medium vulnerabilities   -   You can now download lists of IOCs here!

2024 Credit Card Theft Season Arrives

Nov. 8, 2024, 10:22 a.m.

Description

As the holiday shopping season approaches, eCommerce website owners need to be vigilant against credit card stealing malware, known as 'MageCart'. Attackers focus their efforts in the last quarter to maximize profits from stolen card details. Analysis of recent malware samples reveals sophisticated techniques, including WebSocket skimmers, jquery hex skimmers, and r.blob skimmers. These skimmers use obfuscation methods like XOR encryption and base64 encoding to hide their malicious code. The Smilodon hacking group has evolved its tactics, now using randomized plugin names in WordPress. Website owners are advised to implement security measures such as two-factor authentication, strong passwords, and keeping software up-to-date to protect against these threats.

Date

Published: Nov. 7, 2024, 10:48 p.m.

Created: Nov. 7, 2024, 10:48 p.m.

Modified: Nov. 8, 2024, 10:22 a.m.

Attack Patterns

r.blob skimmer

jquery hex skimmer

WebSocket skimmer

MageCart

Smilodon

T1102.003

T1592.002

T1102.002

T1204.001

T1059.001

T1059.007

T1055

T1140

T1027

T1190

Additional Informations

Retail