2,000 online stores at risk after attack - How to shop safely

It’s bad enough when an online platform like a social network or game gets hacked. But when an online store — and all of its customers’ payment information — finds its way into hackers’ hands, you have an absolute disaster in the making.

Cyberattacks on e-commerce websites are becoming more common each year. Some of them involved direct hacks of their victims, while others involve rigging websites to steal credit card details and personal data when shoppers type them. Tap or click here for a rundown on some of last year’s biggest eCommerce hacks.

And now, one of the biggest e-commerce hacks since 2015 has targeted a system that thousands of online stores rely on: Magento. Thanks to an issue with an outdated version, almost 2,000 stores were altered to steal credit card info from customers. Here’s how we think it happened, and what you can do to stay safe.

The ultimate MageCart attack?

A new report by researchers at Sanguine Security showed nearly 2,000 separate online stores were compromised in what it’s calling the largest automated MageCart campaign ever.

For those who don’t know, a MageCart attack involves compromising an online store so the check-out page will steal data typed in by customers — especially credit card details. Tap or click here for more details on how this cyberattack pattern works.

These websites all had one thing in common: A back-end system controlled by Magento, a powerful e-commerce platform owned by Adobe. The majority of the hacked sites were using an outdated model of Magento that lacked some of the security features included in the latest version. These flaws were exploited by hackers to carry out the attacks.

From September 11 through 14, 2020, Sanguine Security detected 1,904 Magento stores targeted by cyberattacks. These websites had malicious code injected into their check-out pages that would steal customer data and send it back to a URL controlled by hackers.

Although we don’t fully know what exploit the hackers used to attack victims, posts on a Dark Web forum dating back to August showed several Magento exploits on sale for upwards of $5,000. The sale was made to a grand total of 10 people, which may explain how these hackers were able to pull off such a coordinated effort.

Because Magento version 1 is considered an end-of-life product, this means there is no official support or patch. Merchants who rely on Magento should use this incident to switch to more secure options like Magento 2, which features more robust security.

I was shopping online over the weekend. Am I in trouble?

While there isn’t a public-facing list of every store affected by the hack, law enforcement does have access to names of the stores obtained by Sanguine Security. If you were affected by the hacks, expect a site owner to reach out to you about your status.

Continue reading

Massive leak exposes millions of social media profiles - here's what to do

Data breaches and leaks are never fun — especially when they affect a platform you frequently use. Usually, the most dangerous targets are e-commerce due to the fact that they include payment information. But the other most difficult breaches to contain involve social media platforms — all the personal data they contain.

Continue reading

140 million hotel guest records exposed - see if your data is for sale

Las Vegas is home to some of the world’s most spectacular hotels and attractions, and staying on the Strip can sometimes fetch a hefty price. So what happens when a data breach hits one of these luxury destinations and spills the personal details of its high-rolling guests?

Continue reading

Identity theft warning: 30 million credit card records for sale on the Dark Web

Security breaches are no fun for anyone except hackers. Data has become so valuable to advertisers and scammers alike that email addresses alone can fetch a hefty price on the shadier parts of the web.

It happens like clockwork: A flaw is discovered in a popular website or platform. Hackers undermine the system and infiltrate it. Then, the stolen data makes its way to a Dark Web marketplace, where anyone with bitcoin can have a go at your info. Tap or click here to see how 21 million stolen logins were sold this way.

Continue reading