There have been new developments with the Magecart Hacks, and they’re compromising of e-commerce sites left and right. After the group hacked Ticketmaster, British Airways and Feedify, two new victims have been identified: the broadcasting giant ABS-CBN and online retailer Newegg.
HelpNetSecurity.com has reported that security researcher Willem de Groot flagged the ABS-CBN compromise a few days ago and he believes the attackers added the payment card skimming script on or before August 16th.
RiskIQ and Volexity researchers shared details about the Newegg compromise on Wednesday, but it seems that the skimming also started around that time (on August 16th).
“While the functionality of the script is nearly identical, it is worth noting that the attackers have managed to minimize the size of the script even more, from 22 lines of code in the British Airways attack to a mere 8 lines for Newegg, 15 if the code is beautified.”
According to RiskIQ researcher Yonathan Klijnsma, the breach of Newegg shows the true extent of Magecart operators’ reach.
“These attacks are not confined to certain geolocations or specific industries—any organization that processes payments online is a target,” he noted.
The plot thickens
RiskIQ is working on a report on the (currently three, or possibly four) Magecart groups and has been helping compromised services like Shopper Approved(consumer ratings and review network) and Annex Cloud (analytics provider) recover.
The compromise of the latter has, so far, resulted in the revelation that the online shops of American department store chain Stein Mart and sports goods store Title Nine have also been affected.
With ShopperApproved and Annex Cloud servicing thousands of sites, the number of victim companies (and shoppers) is likely to be huge.
But, as Klijnsma pointed out, “the Magecart ‘saga’ isn’t about Newegg, British Airways, Ticketmaster or any other victim. It is about how we deal with online payments. It is time to consider a standard for secure forms with isolation as a standard.”
Have the Magecart Hacks affected you or somebody you know personally? Let us know! Reach out to us today and tell us! You may send an email to Outreach@