Thousands of e-commerce stores built using Magento 1 have been poisoned with malicious code that steals customers' bank card information as they enter their details to order stuff online.
Sansec, a software company focused on these so-called "digital skimming" attacks, discovered that 1,904 cyber-shops had been altered by miscreants over the weekend to include malicious JavaScript that siphoned off folks' card info.
"This automated campaign is by far the largest one that Sansec has identified since it started monitoring in 2015," it said in a statement on Monday. "The previous record was 962 hacked stores in a single day in July last year."
The security biz estimated attackers have stolen personal data from "tens of thousands customers" so far. The intrusions can be traced back to a Magneto 1 zero-day exploit being sold by a Russian-speaking ..
Support the originator by clicking the read the rest link below.
