Australian online stores caught by keylogger attacks

By on
Australian online stores caught by keylogger attacks

A number of sites have been hit by an attack that steals payment card details. Here's how to protect your website and your customers.

According to US-based security provider RiskIQ, an attack dubbed Magecart adds JavaScript to ecommerce sites based on Magento Commerce, Powerfront CMS and OpenCart (and possibly others) in order to collect the data customers type into payment forms. This includes the credit card number, CVC number, cardholder name, and expiry date.

In some cases the attack may add fields to the form in order to collect additional data from its victims.

RiskIQ suspects the attackers were able to gain access to the affected sites because their administrators had failed to keep the ecommerce software and associated plugins up to date.

“For example, the most recent Magento security update patches two vulnerabilities that could allow remote attackers to execute code on vulnerable installations,” said RiskIQ threat researcher Darren Spruell.

“It could also be the case that another exposure was exploited. For example, sites deployed in hosting environments could have been affected by vulnerable cPanel hosting management software on the server, or stolen admin account credentials could have been used to access and modify site contents.”

Whatever method the attackers used to gain access, the only change they needed to make was to insert a single

Copyright © BIT (Business IT). All rights reserved.

Most Read Articles


What would you like to see more of on BiT?
How To's
Photo Galleries
View poll archive

Log In

  |  Forgot your password?