Magecart campaign

Magecart Campaign Hijacks 404 Pages to Steal Data

by

October 11, 2023 at 12:53PM Cybercriminal groups behind the Magecart payment-card theft campaigns have developed a new technique to hide their credit card skimming code. They have started hiding JavaScript code in a comment on a targeted website’s 404 error page. By modifying other pages on the site to include a call to a nonexistent … Read more

October 10, 2023 at 06:06AM – New Magecart Campaign Alters 404 Error Pages to Steal Shoppers’ Credit Cards

by

October 10, 2023 at 06:06AM A new Magecart campaign is using websites’ 404 error pages to conceal malicious code, according to security researcher Roman Lvovsky. The campaign targets Magento and WooCommerce websites, inserting the code directly into HTML pages and scripts. The attacks use a multi-stage process to capture and exfiltrate visitor data on checkout … Read more