Report: Credit Card Skimming Hacker Group Magecart Hit 17,000 New Domains
The credit card skimming hacker group Magecart has hit 17,000 new domains over the past few months. Digital threat management firm RiskIQ published a report on this finding on July 10.
Magecart’s illicit activity was originally unmasked and reported by security researcher Willem de Groot in May this year. According to a report by ZDNet, the hackers were able to exploit the websites of different businesses and steal their customers’ data, including the payment data they entered at checkout.
Initially, only the websites Picreel and Alpaca Forms were reported to be compromised. However, a consequent research by RiskIQ has shown that a number of other businesses were attacked.
The July 10 report by RiskIQ has revealed that the actual scope of the Magecart hacks is much larger than reported earlier.
The company’s research indicated that the attackers were able to exploit misconfigured Amazon cloud repositories to infect “well over 17,000” domains, some of which are in the top 2,000 most popular websites in the world.
On September 6, 2018, Magecart hacked the flag carrier of the UK the British Airways, stealing the personal information of as many as 380,000 of the company’s customers.
RiskIQ claims that it has been working with Amazon since April 2019 to address Magecart infiltrations as they get discovered.