Labs Notes Monthly Recap – Oct/2016

In our September Labs Notes Recap, we listed recent discoveries made by our Incident Response and Malware Research Teams. These monthly recaps serve to bridge the gap between our blog and the ongoing analysis performed by Sucuri Labs. For those who are unaware, the Sucuri Labs Notes is a platform where we share technical insights and trends in website malware infections and cyber attacks that we encounter in the wild.

During our analysis, contributing issues varied from the card-skimming tactics that Willem de Groot shared earlier in the month, to the more recent Joomla account creation and privilege escalation vulnerability in core.

It’s apparent that we’re getting closer to the holiday season, as the theme this month seems to be testing credit card scraping techniques. Attackers are getting ready to fully capitalize on the challenges ecommerce webmasters encounter when it comes to keeping their environments secure. This month alone we published several articles describing a number of TTPs across multiple ecommerce platforms including Magento, OpenCart, and PrestaShop. We believe this is a sign of what to expect as the year comes to a close and we move into 2017.

October saw a 2,855% increase in the number of ecommerce sites compromised with credit card stealers (i.e., online CC skimmers).

Here’s an overview of the research put out by Sucuri Labs in the month of October.