How to Improve Ecommerce Security
Chase Watts If you have an ecommerce website, you are certainly concerned about ecommerce security. Business revenue depends on your online presence and having a website compromise…
Browsing Category
Ecommerce Security
154 posts
Fake Google Domains Used in Evasive Magento Skimmer
Luke Leal We were recently contacted by a Magento website owner who had been blacklisted and was experiencing McAfee SiteAdvisor “Dangerous Site” warnings. Our investigation revealed that…
Stolen Payment Data: Infected Ecommerce Website to Darknet Markets
The final actor of the stolen payment data supply chain is the end user. Rather than just selling or reselling payment data, the end user…
Magento Killer
A malicious PHP script, aptly given the name “Magento Killer” by its creator(s), has been found targeting Magento websites. While it doesn’t actually kill the…
Closed Source E-commerce Platforms Can Be Compromised
Krasimir Konov These days, the majority of store owners opt-in for the easiest closed-source ecommerce platform options. For the most part, these platforms typically allow users to…
How Stolen Ecommerce Data is Sold on the Darknet
We have recently published posts regarding banking malware and some of the ways it uses compromised websites to infect victim’s devices (smartphones, computers, POS terminals).…
PCI for SMB: Requirement 12 – Maintain an Information Security Policy
Victor Santoyo Update: Read our new PCI Compliance guide. Welcome to the final post to conclude our series on understanding the Payment Card Industry Data Security Standard–PCI…
PCI for SMB: Requirement 10 & 11 – Regularly Monitor and Test Networks
Update: Read our new PCI Compliance guide. Welcome to the seventh post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS.…
Google Analytics and Angular in Magento Credit Card Stealing Scripts
Denis Sinegubko Over the last few months, we’ve noticed several credit card-stealing scripts that use variations of the Google Analytics name to make them look less suspicious…
Localization and Customization of Credit Card Stealing Malware
Credit card stealing malware is becoming more and more customized. We’ve been regularly seeing injected scripts with URLs that either mimic or include a portion…
Navigating Data Responsibility
As we take a step back and think about how much the Internet has grown over the past 20 years, we realize how much content/data…