Police in Indonesia, working alongside Interpol, have arrested three men suspected of being part of a gang engaged in Magecart attacks that stole payment card information from online shoppers.
The three men, from the regions of Jakarta and Yogyakarta, were arrested on December 20th as part of an operation called “Night Fury”, but details were only made public at the end of last week at a press conference.
The arrests were announced by Indonesian police at a press conference.
Indonesian police say that the trio, believed to have been active since 2017, made money from attacks against 12 (mostly European) online stores.
However, Security researchers at Sanguine Security say that it has linked the malicious code to attacks found on over 571 websites, 27 of which remain infected to this day despite warnings.
The researchers believe that one or more other suspects remain at large, and report that servers used by gang members to collect credit card data – including one which uses the brazen domain name of magecart.net – have been active and modified since the arrests.
If the arrested men are indeed responsible for some of the attacks that have been blighting online stores in recent years it will be the first time that police anywhere in the world have successfully apprehended an active Magecart gang.
Magecart, a family of Javascript malware, is used to skim credit card details and personal information from unsuspecting internet users as they interact with websites – often as the sensitive data is entered to purchase an item or service online.
..
Support the originator by clicking the read the rest link below.
