Cybercrime, eCommerce and Information Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Security Affairs

MAY 11, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape iClicker site hack targeted students with malware via fake CAPTCHA New Noodlophile Stealer Distributes Via Fake AI Video Generation Platforms Backdoor found in popular ecommerce components Stealthy Linux backdoor leveraging (..)

Malware

Malware eCommerce Hacking Ransomware

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

Security Affairs

APRIL 10, 2025

“These technologies are primarily used by small- to medium-sized businesses for their ease in enabling website development with integrations for eCommerce, website content management, and business service offerings.” .” reads the report published by SentinelOne.

eCommerce

eCommerce Technology DNS Business Services

Crooks use Google Tag Manager skimmer to steal credit card data from a Magento-based e-stores

Security Affairs

FEBRUARY 11, 2025

Sucuri researchers found threat actors using Google Tag Manager (GTM) to deploy e-skimmer malware on a Magento eCommerce site. Sucuri researchers observed threat actors leveraging Google Tag Manager (GTM) to install e-skimmer software on Magento-based e-stores.

eCommerce

eCommerce Malware Marketing Hacking

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

Security Affairs

MAY 5, 2025

“Hundreds of stores, including a $40 billion multinational, are running backdoored versions of popular ecommerce software. We found that the backdoor is actively used since at least April 20th. Sansec identified these backdoors in the following packages which were published between 2019 and 2022.”

eCommerce

eCommerce Hacking Authentication Software

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

Security Affairs

NOVEMBER 26, 2020

The three-month anti-cybercrime effort targeted traders of compromised card details and prevented approximately €40 million in losses. . Cybercrime can affect all aspects of our daily life, from paying in the supermarket, transferring money to our friends to using online communication tools or Internet of Things devices at home.

Cybercrime

Cybercrime eCommerce Banking Marketing

Law enforcement Operation HAECHI IV led to the seizure of $300 Million

Security Affairs

DECEMBER 20, 2023

The six-month operation (July-December 2023) targeted organizations involved in seven types of online scams: business email compromise (BEC), ecommerce fraud, investment fraud, voice phishing , money laundering associated with illegal online gambling, romance scams , and online sextortion schemes.

Scams

Scams eCommerce Banking Cybercrime

Authorities arrest 3 Indonesian hackers behind many Magecart attacks

Security Affairs

JANUARY 26, 2020

The Operation Night Fury was led by Interpol’s ASEAN Cyber Capability Desk, a joint initiative to drive intelligence -led and coordinated actions against cybercrime in ASEAN through the implementation of a harmonized regional coordination framework. The three hackers had compromised hundreds of e-commerce websites worldwide.

Computers and Electronics

Computers and Electronics eCommerce Advertising Cybercrime

Threat actors compromised +500 Magento-based e-stores with e-skimmers

Security Affairs

FEBRUARY 10, 2022

Experts uncovered a mass Magecart campaign that compromised over 500 e-store running the Magento 1 eCommerce platform. Researchers from cybersecurity firm Sansec uncovered a massive Magecart campaign that already compromised more than 500 online stores running the Magento 1 eCommerce platform. com domain. com domain.

eCommerce

eCommerce Malware Hacking Cybersecurity

A new sophisticated JavaScript Skimmer dubbed Pipka used in the wild

Security Affairs

NOVEMBER 15, 2019

Unlike other skimmers, Pipka has the ability to remove itself from the compromised HTML code after execution, in an effort to avoid detection, Visa notes in a security alert ( PDF ). VISA PFD believes that Pipka will continue to evolve and that its use will increase in the cybercrime ecosystem to target eCommerce merchant websites.

eCommerce

eCommerce Accountability Advertising Cybercrime

Over 23 million stolen payment card data traded on the Dark Web in H1 2019

Security Affairs

JULY 28, 2019

According to a report published by cyber security firm Sixgill data for over 23 million payment card were on offer in underground forums in the first half of 2019. . A report published by cybersecurity firm Sixgill revealed that data for over 23 million payment card were offered for sale in the cybercrime underground.

eCommerce

eCommerce Marketing Advertising Accountability

Attackers deploy Linux backdoor on e-stores compromised with software skimmer

Security Affairs

NOVEMBER 18, 2021

Security researchers from Sansec Threat Research Team discovered a Linux backdoor during an investigation into the compromised of an e-commerce server with a software skimmer. The attackers initially conducted a reconnaissance phase by probing the e-store with automated eCommerce attack probes.

Software

Software eCommerce Malware Engineering

Crooks injects e-skimmers in random WordPress plugins of e-stores

Security Affairs

DECEMBER 9, 2021

“If you operate an eCommerce website, be sure to be extra cautious during the holiday season. This is when we see attacks and compromises on ecommerce websites at their highest volume as attackers are poised to make handsome profits from stolen credit card details.” ” concludes the report.

eCommerce

eCommerce Firewall Malware Hacking

Experts spotted five malicious Google Chrome extensions used by 1.4M users

Security Affairs

AUGUST 31, 2022

The extensions a designed to track the user’s browsing activity, they are also able can insert code into eCommerce websites being visited. They do this so that they can insert code into eCommerce websites being visited. . js that sends every URL visited by the victims to the C2 and injects code into the eCommerce sites.

eCommerce

eCommerce Retail Authentication Hacking

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Security Affairs

JANUARY 27, 2020

This successful operation is just one example of how law enforcement are working with industry partners, adapting and applying new technologies to aid investigations and ultimately reduce the global impact of cybercrime,» concluded Mr Jones.” INTERPOL’s Director of Cybercrime. ” Craig Jones. ” Idam Wasiadi.

Cybercrime

Cybercrime Marketing eCommerce Advertising

Cybercriminals Implemented Artificial Intelligence (AI) for Invoice Fraud

Security Affairs

JANUARY 3, 2024

Resecurity has uncovered a cybercriminal faction known as “ GXC Team “, who specializes in crafting tools for online banking theft, ecommerce deception, and internet scams. This approach was used to deceive individuals into sharing sensitive information with malicious actors.

Artificial Intelligence

Artificial Intelligence Banking Scams Cybercrime

Magecart attacks are still around but are more difficult to detect

Security Affairs

JUNE 22, 2022

link] #Magecart #ecommerce pic.twitter.com/p3C4EOXh3C — Sansec (@sansecio) June 9, 2022. We're right on the heels of Magecart cybercriminals New malware domain found: scanalytic[.org org Sansec tracks payment fraudsters around the clock. Sometimes we are able to defuse their skimming domains before they are put to use.

eCommerce

eCommerce InfoSec Malware Hacking

WordPress Plugin abused to install e-skimmers in e-commerce sites

Security Affairs

MAY 28, 2024

Disabling the auto-fill feature on the fake checkout form is an evasion trick that reduces the chances of the browser warning users about entering sensitive information. “In essence, ecommerce sites are prime targets for hackers due to the valuable data they handle.” ” concludes the report.

eCommerce

eCommerce Firewall Malware Passwords

Retail giant Costco discloses data breach, payment card data exposed

Security Affairs

NOVEMBER 12, 2021

The company also operates eCommerce websites for shoppers in North and South America, Europe and Asia. “We The retail giant has 737 membership-only retail stores across the U.S., it is the fifth-largest retailer in the world and the 10th-largest corporation in the country by total revenue.

Retail

Retail Data breaches eCommerce Hacking

Samsung suffered a new data breach

Security Affairs

NOVEMBER 16, 2023

On 13 November 2023, it was determined that an unauthorised individual exploited a vulnerability in a third-party business application we use, and that some personal information of certain customers who made purchases on SEUK’s eCommerce site between July 1, 2019 and June 30, 2020, was affected.”

Data breaches

Data breaches eCommerce Hacking Authentication

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

Security Affairs

SEPTEMBER 2, 2022

JavaScript #skimmer overlayed onto payment page of an infected #Magento ecommerce store to steal payment card data from visitors exfils to united81[.]com com #magecart #infosec #cybersecurity #malware [link] pic.twitter.com/x8VrkKzXPc — Luke Leal (@rootprivilege) August 26, 2022.

eCommerce

eCommerce Digital transformation InfoSec Media

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Security Affairs

SEPTEMBER 18, 2020

Just as it was the case in the second half of 2019, in the first half of this year, online services like ecommerce websites turned out to be the main target of web-phishers. Pandemic chronicle. In the light of global pandemic and the businesses’ dive into online world, the share of this phishing category increased to remarkable 46 percent.

Phishing

Phishing Ransomware Spyware Banking

Magento and Adobe Commerce websites under attack

Security Affairs

NOVEMBER 17, 2022

” reads the report published by the experts “The trend in recent weeks paints a grim picture for ecommerce DevOps teams worldwide for the coming weeks.” Merchants and developers should be on the lookout for TrojanOrders: orders that exploit a critical vulnerability in Magento stores.”

eCommerce

eCommerce Hacking Authentication Technology

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Security Affairs

DECEMBER 5, 2022

Currently, cybercriminals are offering over 1,849 malicious scenarios for sale, designed for major financial institutions, ecommerce, payment systems, online retailers, and social media companies from over 45 countries including the U.S, Canada, Brazil, Colombia, Mexico, Saudi Arabia, Bahrain, Turkey, and Singapore. ” – he added.

Mobile

Mobile Malware Banking Retail

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

Security Affairs

OCTOBER 20, 2020

They are a big headache for eCommerce businesses today, with cybercriminals using them to steal money, brute-force user credentials or carry out DDoS attacks. Bots, which are reported to generate about a quarter of global Web traffic, are de facto programs that emulate the actions of a real device for the purposes needed.

Cryptocurrency

Cryptocurrency Social Engineering eCommerce Engineering

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

The global pandemic has kept people home, and so many consumers have entered the world of eCommerce. Many of those who are new to eCommerce have proven more likely to reuse passwords and less likely to follow security best practices. Jon Clemenson, director of information security, TokenEx. How can that be?

Cybersecurity

Cybersecurity Backups Ransomware Passwords

Security Affairs newsletter Round 523 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MAY 11, 2025

CVSS) in IOS XE That Enables Root Exploits via JWT Internet tracking: How and why were followed online Google to pay Texas $1.4

Spyware

Spyware Ransomware Malware DDOS

Cyber Security Informer

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

Trending Sources

Crooks use Google Tag Manager skimmer to steal credit card data from a Magento-based e-stores

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

Law enforcement Operation HAECHI IV led to the seizure of $300 Million

Authorities arrest 3 Indonesian hackers behind many Magecart attacks

Threat actors compromised +500 Magento-based e-stores with e-skimmers

A new sophisticated JavaScript Skimmer dubbed Pipka used in the wild

Over 23 million stolen payment card data traded on the Dark Web in H1 2019

Attackers deploy Linux backdoor on e-stores compromised with software skimmer

Crooks injects e-skimmers in random WordPress plugins of e-stores

Experts spotted five malicious Google Chrome extensions used by 1.4M users

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Cybercriminals Implemented Artificial Intelligence (AI) for Invoice Fraud

Magecart attacks are still around but are more difficult to detect

WordPress Plugin abused to install e-skimmers in e-commerce sites

Retail giant Costco discloses data breach, payment card data exposed

Samsung suffered a new data breach

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Magento and Adobe Commerce websites under attack

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

Cybersecurity Awareness Month: Security Experts Reflect on Safety

Security Affairs newsletter Round 523 by Pierluigi Paganini – INTERNATIONAL EDITION

Stay Connected