Black Friday/Cyber Monday Ecommerce Security Threats
Luke Leal With the end of November comes the height of the holiday shopping season — specifically Black Friday and Cyber Monday sales, which typically span the…
Browsing Category
Ecommerce Security
156 posts
Skimmers for Both Magento and WordPress
Denis Sinegubko We often write about malware that steal payment information from sites built with Magento and other types of e-commerce CMS. When discussing credit card skimmers…
How to Improve Ecommerce Security
Chase Watts If you have an ecommerce website, you are certainly concerned about ecommerce security. Business revenue depends on your online presence and having a website compromise…
Fake Google Domains Used in Evasive Magento Skimmer
We were recently contacted by a Magento website owner who had been blacklisted and was experiencing McAfee SiteAdvisor “Dangerous Site” warnings. Our investigation revealed that…
Stolen Payment Data: Infected Ecommerce Website to Darknet Markets
The final actor of the stolen payment data supply chain is the end user. Rather than just selling or reselling payment data, the end user…
Magento Killer
A malicious PHP script, aptly given the name “Magento Killer” by its creator(s), has been found targeting Magento websites. While it doesn’t actually kill the…
Closed Source E-commerce Platforms Can Be Compromised
Krasimir Konov These days, the majority of store owners opt-in for the easiest closed-source ecommerce platform options. For the most part, these platforms typically allow users to…
How Stolen Ecommerce Data is Sold on the Darknet
We have recently published posts regarding banking malware and some of the ways it uses compromised websites to infect victim’s devices (smartphones, computers, POS terminals).…
PCI for SMB: Requirement 12 – Maintain an Information Security Policy
Victor Santoyo Update: Read our new PCI Compliance guide. Welcome to the final post to conclude our series on understanding the Payment Card Industry Data Security Standard–PCI…
PCI for SMB: Requirement 10 & 11 – Regularly Monitor and Test Networks
Update: Read our new PCI Compliance guide. Welcome to the seventh post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS.…
Google Analytics and Angular in Magento Credit Card Stealing Scripts
Over the last few months, we’ve noticed several credit card-stealing scripts that use variations of the Google Analytics name to make them look less suspicious…