eCommerce, Hacking and Malware - Cyber Security Informer

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. Northdata reports that Shoppy’s business name — Shoppy Ecommerce Ltd.

eCommerce

eCommerce Cybercrime Accountability Hacking

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Security Affairs

MAY 11, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape iClicker site hack targeted students with malware via fake CAPTCHA New Noodlophile Stealer Distributes Via Fake AI Video Generation Platforms Backdoor found in popular ecommerce components Stealthy Linux backdoor leveraging (..)

Malware

Malware eCommerce Hacking Ransomware

Uncovering New Magecart Implant Attacking eCommerce

Security Affairs

FEBRUARY 19, 2020

Please if you used your credit card in one of the following eCommerce (IoC section) consider your credit card as a no more private card: call your bank and follows the deactivation steps. for giving me the first “wired eCommerce”. Everything starts from a vulnerable eCommerce web-site. I want to thank Daniele B. su/gate/proxy.

eCommerce

eCommerce Advertising Banking Hacking

Top 6 Hacks To Secure Your eCommerce Site Against Cyber Threats

SecureBlitz

FEBRUARY 15, 2021

This post will show you the top 6 hacks to secure your eCommerce site against cyber threats. ECommerce sites are a lucrative source of personal and financial data for potential attackers. The impact on eCommerce businesses can be devastating.

eCommerce

eCommerce Cyber threats Hacking Cybersecurity

Crooks use Google Tag Manager skimmer to steal credit card data from a Magento-based e-stores

Security Affairs

FEBRUARY 11, 2025

Sucuri researchers found threat actors using Google Tag Manager (GTM) to deploy e-skimmer malware on a Magento eCommerce site. This isn’t the first time that Sucuri documented the use of GTM to deploy e-skimmer on e-store, in 2024, the experts detailed how Magecart veteran ATMZOW was using Google Tag Manager to deliver malware.

eCommerce

eCommerce Malware Marketing Hacking

Cybercrime: Why Ecommerce Environments Should be Extra Vigilant

SecureWorld News

OCTOBER 12, 2022

It is sadly the case that ecommerce cybercrime is on the rise. As cybercriminals do seem to be taking a keener interest in the industry, it is up to owners of ecommerce businesses to be extra vigilant about cybercrime and put appropriate defenses in place to keep the company secure. What new ecommerce businesses need to know.

eCommerce

eCommerce Cybercrime Retail Phishing

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

Security Affairs

MAY 5, 2025

Sansec researchers reported that multiple vendors were hacked in a coordinated supply chain attack, the experts discovered that a backdoor was hidden in 21 applications. “Hundreds of stores, including a $40 billion multinational, are running backdoored versions of popular ecommerce software. ” concludes the report. .

eCommerce

eCommerce Hacking Authentication Software

FIN6 recently expanded operations to target eCommerce sites

Security Affairs

AUGUST 31, 2019

The financially-motivated hacking group FIN6 is switching tactics, passing from PoS attacks to the hack of e-commerce websites. FIN6 hackers first compromise the target websites with a backdoor tracked as More_eggs JScript backdoor malware (a.k.a. SecurityAffairs – FIN6, hacking). and Europe. . Pierluigi Paganini.

eCommerce

eCommerce Advertising Hacking Malware

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

Security Affairs

APRIL 10, 2025

“These technologies are primarily used by small- to medium-sized businesses for their ease in enabling website development with integrations for eCommerce, website content management, and business service offerings.” .” reads the report published by SentinelOne.

eCommerce

eCommerce Technology DNS Business Services

NginRAT – A stealth malware targets e-store hiding on Nginx servers

Security Affairs

DECEMBER 2, 2021

Threat actors are targeting e-stores with remote access malware, dubbed NginRAT, that hides on Nginx servers bypassing security solutions. While investigating CronRAT infections in North America and Europe the researchers spotted a new malware, dubbed NginRAT, that hides on Nginx servers bypassing security solutions.

Malware

Malware eCommerce Hacking Information Security

Visa warns of new sophisticated credit card skimmer dubbed Baka

Security Affairs

SEPTEMBER 6, 2020

Baka is a sophisticated e-skimmer developed by a skilled malware developer that implements a unique obfuscation method and loader. The skimmer loads dynamically to avoid static malware scanners and uses unique encryption parameters for each victim to obfuscate the malicious code.” SecurityAffairs – hacking, Baka e-skimmer).

eCommerce

eCommerce Malware Encryption Advertising

A new e-skimmer found on WordPress site using the WooCommerce plugin

Security Affairs

APRIL 12, 2020

Experts from security firm Sucuri discovered a new e-skimmer software that is different from similar malware used in Magecart attacks. Naturally, WooCommerce and other WordPress-based ecommerce websites have been targeted before, but this has typically been limited to modifications of payment details within the plugin settings.”

eCommerce

eCommerce Malware Advertising Software

Attackers deploy Linux backdoor on e-stores compromised with software skimmer

Security Affairs

NOVEMBER 18, 2021

The attackers initially conducted a reconnaissance phase by probing the e-store with automated eCommerce attack probes. “At the time of writing, no other anti-virus vendor recognize this malware. Curiously, one individual had submitted the same malware to Virustotal on Oct 8th with the comment “test”.”

Software

Software eCommerce Malware Engineering

Threat actors compromised +500 Magento-based e-stores with e-skimmers

Security Affairs

FEBRUARY 10, 2022

Experts uncovered a mass Magecart campaign that compromised over 500 e-store running the Magento 1 eCommerce platform. Researchers from cybersecurity firm Sansec uncovered a massive Magecart campaign that already compromised more than 500 online stores running the Magento 1 eCommerce platform. com domain. com domain.

eCommerce

eCommerce Malware Hacking Cybersecurity

WooCommerce Credit Card Swiper Hides in Plain Sight

Security Boulevard

MAY 28, 2021

Recently, a client’s customers were receiving a warning from their anti-virus software when they navigated to the checkout page of the client’s ecommerce website. Antivirus software such as Kaspersky and ESET would issue a warning but only once a product had been added to the cart and a customer was about to enter their payment information.

eCommerce

eCommerce Antivirus Software Malware

Why Would Someone Hack My Website?

SiteLock

AUGUST 27, 2021

Abby’s Flower Shop Delivers Fresh Malware to Your Door. One day, much to Abby’s surprise, she was notified by her hosting provider that her website was suspended due to malware. Abby can use a website scanner to find malware on her site. If malware is found, she is alerted immediately.

Hacking

Hacking DDOS eCommerce Firewall

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Security Affairs

DECEMBER 5, 2022

Resecurity has identified a new underground marketplace in the Dark Web oriented towards mobile malware developers and operators. This trend comes from the “Man in The Browser” (MiTB) attacks and WEB-injects designed for traditional PC-based malware such as Zeus, Gozi and SpyEye.

Mobile

Mobile Malware Banking Retail

Critical Magento zero-day flaw CVE-2022-24086 actively exploited

Security Affairs

FEBRUARY 14, 2022

Last week, researchers from cybersecurity firm Sansec uncovered a massive Magecart campaign that already compromised more than 500 online stores running the Magento 1 eCommerce platform. More than 350 ecommerce stores infected with malware in a single day. SecurityAffairs – hacking, Magento). com domain.

eCommerce

eCommerce Malware Authentication Hacking

Magecart attacks are still around but are more difficult to detect

Security Affairs

JUNE 22, 2022

We're right on the heels of Magecart cybercriminals New malware domain found: scanalytic[.org link] #Magecart #ecommerce pic.twitter.com/p3C4EOXh3C — Sansec (@sansecio) June 9, 2022. net injected into #magento db and loading #JavaScript on a hacked store's checkout page. SecurityAffairs – hacking, Magecart).

eCommerce

eCommerce InfoSec Malware Hacking

Crooks injects e-skimmers in random WordPress plugins of e-stores

Security Affairs

DECEMBER 9, 2021

This makes any malware injected into these files very easy to spot even by less experienced website administrators. “If you operate an eCommerce website, be sure to be extra cautious during the holiday season. SecurityAffairs – hacking, e-skimmer). The next logical step for them would be to target plugin and theme files.”

eCommerce

eCommerce Firewall Malware Hacking

WordPress Plugin abused to install e-skimmers in e-commerce sites

Security Affairs

MAY 28, 2024

The malware has two main components. When the malware detects these parameters, it sends all the collected billing and credit card information to a third-party URL “hxxps://2of[.]cc/wp-content/” “In essence, ecommerce sites are prime targets for hackers due to the valuable data they handle.”

eCommerce

eCommerce Firewall Malware Passwords

The danger of data breaches — what you really need to know

Webroot

APRIL 22, 2025

Data breaches occur when sensitive, protected, or confidential data is hacked or leaked from a company or organization. Retail and e-commerce: Retail and ecommerce businesses are vulnerable to breaches because they handle and store vast amounts of customer payment information, including addresses, credit card numbers and more.

Data breaches

Data breaches Identity Theft Passwords eCommerce

Security Affairs newsletter Round 225 and Important Update

Security Affairs

AUGUST 4, 2019

Crooks used rare Steganography technique to hack fully patched websites in Latin America. Jessica Alba ‘s Twitter account hacked, it posted racist and homophobic messages. Android devices could be hacked by playing a video due to CVE-2019-2107 flaw. Malware researchers analyzed an intriguing Java ATM Malware.

Data breaches

Data breaches eCommerce Hacking Cyber Attacks

Evilnum Group targets European and British fintech companies

Security Affairs

JULY 10, 2020

Evilnum threat actor was first spotted in 2018 while using the homonym malware. Over the years, the group added new tools to its arsenal, including custom and homemade malware along with software purchased from the Golden Chickens malware-as-a-service (MaaS) provider. SecurityAffairs – hacking, Evilnum).

eCommerce

eCommerce Malware Advertising Spyware

Security Affairs newsletter Round 229 – News of the week

Security Affairs

SEPTEMBER 1, 2019

Experts uncovered a hacking campaign targeting several WordPress Plugins. Internal Revenue Service warns taxpayers of a malware campaign. Nemty Ransomware, a new malware appears in the threat landscape. Kaspersky found malware in popular CamScanner app. Magecart hackers compromise another 80 eCommerce sites.

eCommerce

eCommerce Data breaches Malware Advertising

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

The company immediately launched an investigation that revealed that a third-party ecommerce platform, Salesforce Commerce Cloud, was infected with an e-skimmer. The malware was completely removed on November 11, 2019. SecurityAffairs – Hanna Andersson , hacking). Pierluigi Paganini.

Data breaches

Data breaches Retail Identity Theft eCommerce

Experts spotted five malicious Google Chrome extensions used by 1.4M users

Security Affairs

AUGUST 31, 2022

The extensions a designed to track the user’s browsing activity, they are also able can insert code into eCommerce websites being visited. They do this so that they can insert code into eCommerce websites being visited. . js that sends every URL visited by the victims to the C2 and injects code into the eCommerce sites.

eCommerce

eCommerce Retail Authentication Hacking

Authorities arrest 3 Indonesian hackers behind many Magecart attacks

Security Affairs

JANUARY 26, 2020

“This group had a serious impact on global ecommerce security in recent years, by skimming at least 571 hacked stores.” SecurityAffairs – Magecart, hacking). ” concluded the experts. “However, they were responsible for just 1% of all Magecart incidents since 2018 and should be considered small catch. .”

Computers and Electronics

Computers and Electronics eCommerce Advertising Cybercrime

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

Security Affairs

SEPTEMBER 2, 2022

JavaScript #skimmer overlayed onto payment page of an infected #Magento ecommerce store to steal payment card data from visitors exfils to united81[.]com com #magecart #infosec #cybersecurity #malware [link] pic.twitter.com/x8VrkKzXPc — Luke Leal (@rootprivilege) August 26, 2022. SecurityAffairs – hacking, Log4Shell).

eCommerce

eCommerce Digital transformation InfoSec Media

Global Shipping and mailing services firm Pitney Bowes hit by ransomware attack

Security Affairs

OCTOBER 15, 2019

Pitney Bowes is a global technology company that provides commerce solutions in the areas of ecommerce, shipping, mailing, data and financial services. “Pitney Bowes was affected by a malware attack that encrypted information on some systems and disrupted customer access to some of our services. ” . . Pierluigi Paganini.

Ransomware

Ransomware eCommerce Financial Services Advertising

Magento and Adobe Commerce websites under attack

Security Affairs

NOVEMBER 17, 2022

In September 2022, Sansec researchers warned of a surge in hacking attempts targeting a critical Magento 2 vulnerability tracked as CVE-2022-24086. ” reads the report published by the experts “The trend in recent weeks paints a grim picture for ecommerce DevOps teams worldwide for the coming weeks.”

eCommerce

eCommerce Hacking Authentication Technology

Hacked for the Holidays? 4 Website Security Tips for Safe Retailing

SiteLock

AUGUST 27, 2021

In fact, shipping experts like FedEx, are predicting another record-breaking year of shipments driven by eCommerce purchases. Even more alarming is the fact that eCommerce sites are 1.5 So what’s an eCommerce retailer to do? In fact, recent data indicates that websites are attacked an average of 22 times per day.

Retail

Retail eCommerce Hacking Malware

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Security Affairs

SEPTEMBER 18, 2020

Ransomware , the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed by Group-IB’s Computer Emergency Response Team (CERT-GIB) contained this kind of malware. SecurityAffairs – hacking, ransomware). Pandemic chronicle. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Ransomware Spyware Banking

WooCommerce Credit Card Skimmer Hides in Plain Sight

Security Boulevard

MAY 28, 2021

Recently, a client’s customers were receiving a warning from their anti-virus software when they navigated to the checkout page of the client’s ecommerce website. Antivirus software such as Kaspersky and ESET would issue a warning but only once a product had been added to the cart and a customer was about to enter their payment information.

eCommerce

eCommerce Antivirus Software Malware

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , and ecommerce-ads[.]org.” com , pine-sales[.]com

Surveillance

Surveillance Malware Spyware Mobile

Over 23 million stolen payment card data traded on the Dark Web in H1 2019

Security Affairs

JULY 28, 2019

They infect computers and other devices with malware to record payment information when their owners buy from ecommerce sites. Cards with CVV numbers were more popular, in part because the ability to fabricate new cards to be used in-person is far more difficult than using an ecommerce site.”

eCommerce

eCommerce Marketing Advertising Accountability

Group-IB detects Half a Million Indian Banks’ Cards on Joker’s Stash Cardshop

Security Affairs

FEBRUARY 8, 2020

Such type of data is likely to have been compromised online — with the use of phishing, malware, or JS-sniffers — while in the previous case, we dealt with card dumps (the information contained in the card magnetic stripe), which can be stolen through the compromise of offline POS terminals, for example. Pierluigi Paganini.

Banking

Banking Marketing eCommerce Advertising

Plugin Vulnerabilities: WordPress Fashion Blogger Hit by Zero-Day Exploit

SiteLock

AUGUST 27, 2021

Our security analysts were furiously working to manually clean malware from a number of WordPress sites. Our security analysts recognized they were cleaning the same malware strain found in the Yuzo zero-day exploit. My heart sank, and I was faced with exactly what I was afraid of, my site had been hacked,” Swanson said.

Malware

Malware Firewall eCommerce Hacking

China and India present new Challenges and Opportunities for Mobile App Developers

Security Boulevard

MARCH 24, 2023

Pinduoduo Malware highlights the need for App Attestation on a Global Scale The recent Pinduoduo hack may have impacted over 700 million users in China, and highlights the need for mobile app attestation to protect against mobile app malware and other vulnerabilities.

Mobile

Mobile eCommerce Malware Hacking

Protect Customer Data with the Enhanced SMART Database Scanner

SiteLock

AUGUST 27, 2021

30% of all malware cleaned by SiteLock’s Expert Services is located inside website databases. That’s why we launched SMART® Database (SMART/DB™) two years ago, automatically detecting spam or malware found within critical WordPress database tables. Manual malware scanning is a thing of the past with the new SMART/DB scanner.

Small Business

Small Business Malware eCommerce Retail

Payment data of thousands of customers of UK and US online stores could have been compromised

Security Affairs

MARCH 14, 2019

According to IRP, UK market research firm, a minimum conversion into purchase for fashion and clothing ecommerce is equal to 1%. We dubbed this JS Sniffer family GMO because the malware uses gmo[.]li JS Sniffers is a type of malware that remains poorly researched. According to Alexa.com, the number of fila.co [.]uk

eCommerce

eCommerce Marketing Data breaches Advertising

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

Security Affairs

NOVEMBER 26, 2020

All of the 90,000 pieces analysed by Group-IB included full card data – cards compromised via phishing websites, from end devices infected with banking Trojans, as well as by the means of hijacked eCommerce websites and the use of JS-sniffers. SecurityAffairs – hacking, Carding). Pierluigi Paganini.

Cybercrime

Cybercrime eCommerce Banking Marketing

Airspeed-Wireless Safeguards Their Website with SiteLock [Case Study]

SiteLock

AUGUST 27, 2021

Tony Spiridigliozzi is the founder of the successful eCommerce website Airspeed-Wireless.com. Unfortunately it did not and the hacking attempts continued. The hacker injected malware into the newly developed site and taunted Spiridigliozzi by engaging him in online chat. Company Background. Solution and Result.

Wireless

Wireless eCommerce Malware Firewall

Gustuff Android banking trojan targets 125+ banking, and 32 cryptocurrency apps

Security Affairs

MARCH 28, 2019

Security experts at Group-IB have detected the activity of Gustuff a mobile Android Trojan, which includes potential targets of customers in leading international banks, users of cryptocurrency services, popular ecommerce websites and marketplaces. Gustuff has previously never been reported.

Banking

Banking Cryptocurrency Mobile Advertising

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Trending Sources

Uncovering New Magecart Implant Attacking eCommerce

Top 6 Hacks To Secure Your eCommerce Site Against Cyber Threats

Crooks use Google Tag Manager skimmer to steal credit card data from a Magento-based e-stores

Cybercrime: Why Ecommerce Environments Should be Extra Vigilant

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

FIN6 recently expanded operations to target eCommerce sites

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

NginRAT – A stealth malware targets e-store hiding on Nginx servers

Visa warns of new sophisticated credit card skimmer dubbed Baka

A new e-skimmer found on WordPress site using the WooCommerce plugin

Attackers deploy Linux backdoor on e-stores compromised with software skimmer

Threat actors compromised +500 Magento-based e-stores with e-skimmers

WooCommerce Credit Card Swiper Hides in Plain Sight

Why Would Someone Hack My Website?

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Critical Magento zero-day flaw CVE-2022-24086 actively exploited

Magecart attacks are still around but are more difficult to detect

Crooks injects e-skimmers in random WordPress plugins of e-stores

WordPress Plugin abused to install e-skimmers in e-commerce sites

The danger of data breaches — what you really need to know

Security Affairs newsletter Round 225 and Important Update

Evilnum Group targets European and British fintech companies

Security Affairs newsletter Round 229 – News of the week

US-based children’s clothing maker Hanna Andersson discloses a data breach

Experts spotted five malicious Google Chrome extensions used by 1.4M users

Authorities arrest 3 Indonesian hackers behind many Magecart attacks

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

Global Shipping and mailing services firm Pitney Bowes hit by ransomware attack

Magento and Adobe Commerce websites under attack

Hacked for the Holidays? 4 Website Security Tips for Safe Retailing

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

WooCommerce Credit Card Skimmer Hides in Plain Sight

Amnesty International employee targeted with NSO group surveillance malware

Over 23 million stolen payment card data traded on the Dark Web in H1 2019

Group-IB detects Half a Million Indian Banks’ Cards on Joker’s Stash Cardshop

Plugin Vulnerabilities: WordPress Fashion Blogger Hit by Zero-Day Exploit

China and India present new Challenges and Opportunities for Mobile App Developers

Protect Customer Data with the Enhanced SMART Database Scanner

Payment data of thousands of customers of UK and US online stores could have been compromised

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

Airspeed-Wireless Safeguards Their Website with SiteLock [Case Study]

Gustuff Android banking trojan targets 125+ banking, and 32 cryptocurrency apps

Stay Connected