The notorious Magecart
malware, that blights online stores by stealing payment card details from unsuspecting shoppers at checkout, has claimed another high profile victim.Security researcher Troy Mursch raised the alarm on Twitter
that the Forbes magazine subscription website had been compromised with malicious code that was siphoning off sensitive credit card information as users attempted to sign-up for the paper edition.Unsuspecting subscribers would think they were entering their details to receive regular copies of the magazine, but what they didn’t know was that payment card numbers, expiry dates, three digit CVV/CVC security number were being grabbed by hackers, alongside their names, addresses, and phone numbers.It appears that the attackers had planted their malicious code on a third-party website with the name fontsawesome.gq – presumably with the thought that if anyone took the trouble to examine the source code of Forbes magazine’s website they might conclude that it was related to the legitimate FontAwesome service, used by many websites to provide fancy icons.
that resulted in code used by thousands of websites being compromised.Troy Mursc ..
Support the originator by clicking the read the rest link below.