Displaying items by tag: RiskIQ

The use of infrastructure based in the US by the attackers in the first stage of the SolarWinds supply chain compromise is one factor which has inhibited the investigation into the incident, as this meant it was effectively blocked from being pursued by the NSA, the security firm RiskIQ says.

Published in Security

Senior threat researcher Yonathan Klijnsma of the firm RiskIQ has died a few days short of his 30th birthday, with the talented hacker meeting his end at the hands of cancer.

Published in Security

Security firm RiskIQ says a wave of compromises of e-commerce websites earlier this year were carried out through use of a variant of the Ant and Cockroach skimmer which was connected to a group of attackers known as Magecart group 12.

Published in Security

Twitter accounts of many rich and famous Americans — including Elon Musk, Joe Biden, Barack Obama and Jeff Bezos — were hijacked on Wednesday and used to advertise cryptocurrency scams, according to a tweet from British security researcher Marcus Hutchins.

Published in Security

Global content delivery network Akamai has launched Page Integrity Manager, an edge service that can be embedded into Web pages to protect against JavaScript threats such as Web skimming, formjacking and Magecart attacks.

Published in Security

Security outfit RiskIQ says it has found a new variant of the cyber-crime syndicate Magecart which is has named MakeFrame due to the fact that it creates iframes for skimming payment data from websites.

Published in Security

Security firm RiskIQ says it has tried several times to contact blender manufacturer NutriBullet to inform the latter of a JavaScript skimmer that was noticed on its international website on 20 February — an attack that has been identified as being carried out by one of the Magecart groups, in this case Group 8 — but has not heard back from the blender manufacturer.

Published in Security

Three men, identified only by their initials, have been arrested in Indonesia on suspicion of using Magecart-style attacks to steal digital data in Indonesia.

Published in Security

An established group that steals data through phishing and card-skimming is using new infrastructure and activities to generate revenue, the security firm RiskIQ says, adding that it has named the group Fullz House based on its operations.

Published in Security

Security firm RiskIQ, which closely tracks incidences of online shopping sites being compromised, has put out a study in which it claims that Black Friday and Cyber Monday, the two big online shopping days, are sure to be in the sights of cyber criminals.

Published in Apps

The number of blacklisted mobile apps in the 120-odd mobile stores, examined by security firm RiskIQ on a regular basis, grew from 44,850 to 53,955, a rise of 20%, the company said in its mobile threat report for the second quarter of the year.

Published in Security

A cyber crime syndicate known as Magecart, which is made up of dozens of sub-groups that indulge in credit card theft by skimming online payment forms, has been found to be implicated in more than two million such attacks.

Published in Security

Attackers who breached networks at India's second largest outsourcing company, Wipro, were part of a sophisticated campaign that used both commercial and open-source marketing tools to hit many organisations with phishing attacks. Most of these were firms that deal in gift cards.

Published in Security

The subscription site for Forbes magazine has been the victim of the card-skimming attack group Magecart, with the well-known website leaking card data on Wednesday until the attack was noticed and the site taken down.

Published in Security
Wednesday, 05 December 2018 08:01

Clothing company OppoSuits hit by Magecart attack

Customers of Dutch clothing company OppoSuits have been warned to monitor their credit card accounts after the firm reported that malware planted on its website could have stolen the details of customers who made purchases from its Australian, Canadian, EU and UK websites.

Published in Security

Financial data stolen from British Airways in a recent attack by a group known as Magecart is being hawked on the dark web, the researchers who attributed the attack claim.

Published in Security

British Airways has updated its advice on a breach of customer data, saying the payments cards of another 185,000 people could be affected, in addition to the 380,000 first mentioned.

Published in Security

Security firm RiskIQ has discovered another case of a site breach by the group Magecart, this time against Shopper Approved, a customer rating plugin that is used on thousands of ecommerce sites.

Published in Security

The malicious attacker, or attackers, known as Magecart, who infiltrated the British Airways website last month, have now attacked online retailer Newegg using a new domain named neweggstats.com that they registered in August.

Published in Security
Wednesday, 12 September 2018 06:20

Sec firm RiskIQ claims Magecart group behind BA breach

Security firm RiskIQ has claimed that the breach of the British Airways website was carried out by a group known as Magecart which was also responsible for infiltrating the Ticketmaster UK website earlier this year.

Published in Security

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments