Displaying items by tag: RiskIQ

The use of infrastructure based in the US by the attackers in the first stage of the SolarWinds supply chain compromise is one factor which has inhibited the investigation into the incident, as this meant it was effectively blocked from being pursued by the NSA, the security firm RiskIQ says.

Senior threat researcher Yonathan Klijnsma of the firm RiskIQ has died a few days short of his 30th birthday, with the talented hacker meeting his end at the hands of cancer.

Security firm RiskIQ says a wave of compromises of e-commerce websites earlier this year were carried out through use of a variant of the Ant and Cockroach skimmer which was connected to a group of attackers known as Magecart group 12.

Twitter accounts of many rich and famous Americans — including Elon Musk, Joe Biden, Barack Obama and Jeff Bezos — were hijacked on Wednesday and used to advertise cryptocurrency scams, according to a tweet from British security researcher Marcus Hutchins.

Global content delivery network Akamai has launched Page Integrity Manager, an edge service that can be embedded into Web pages to protect against JavaScript threats such as Web skimming, formjacking and Magecart attacks.

Security outfit RiskIQ says it has found a new variant of the cyber-crime syndicate Magecart which is has named MakeFrame due to the fact that it creates iframes for skimming payment data from websites.

Security firm RiskIQ says it has tried several times to contact blender manufacturer NutriBullet to inform the latter of a JavaScript skimmer that was noticed on its international website on 20 February — an attack that has been identified as being carried out by one of the Magecart groups, in this case Group 8 — but has not heard back from the blender manufacturer.

Three men, identified only by their initials, have been arrested in Indonesia on suspicion of using Magecart-style attacks to steal digital data in Indonesia.

An established group that steals data through phishing and card-skimming is using new infrastructure and activities to generate revenue, the security firm RiskIQ says, adding that it has named the group Fullz House based on its operations.

Security firm RiskIQ, which closely tracks incidences of online shopping sites being compromised, has put out a study in which it claims that Black Friday and Cyber Monday, the two big online shopping days, are sure to be in the sights of cyber criminals.

The number of blacklisted mobile apps in the 120-odd mobile stores, examined by security firm RiskIQ on a regular basis, grew from 44,850 to 53,955, a rise of 20%, the company said in its mobile threat report for the second quarter of the year.

A cyber crime syndicate known as Magecart, which is made up of dozens of sub-groups that indulge in credit card theft by skimming online payment forms, has been found to be implicated in more than two million such attacks.

Attackers who breached networks at India's second largest outsourcing company, Wipro, were part of a sophisticated campaign that used both commercial and open-source marketing tools to hit many organisations with phishing attacks. Most of these were firms that deal in gift cards.

The subscription site for Forbes magazine has been the victim of the card-skimming attack group Magecart, with the well-known website leaking card data on Wednesday until the attack was noticed and the site taken down.

Customers of Dutch clothing company OppoSuits have been warned to monitor their credit card accounts after the firm reported that malware planted on its website could have stolen the details of customers who made purchases from its Australian, Canadian, EU and UK websites.

Financial data stolen from British Airways in a recent attack by a group known as Magecart is being hawked on the dark web, the researchers who attributed the attack claim.

British Airways has updated its advice on a breach of customer data, saying the payments cards of another 185,000 people could be affected, in addition to the 380,000 first mentioned.

Security firm RiskIQ has discovered another case of a site breach by the group Magecart, this time against Shopper Approved, a customer rating plugin that is used on thousands of ecommerce sites.

The malicious attacker, or attackers, known as Magecart, who infiltrated the British Airways website last month, have now attacked online retailer Newegg using a new domain named neweggstats.com that they registered in August.

Security firm RiskIQ has claimed that the breach of the British Airways website was carried out by a group known as Magecart which was also responsible for infiltrating the Ticketmaster UK website earlier this year.