Media and Entertainment

ABS-CBN Sites Compromised By MageCart Skimmer, China Arrests Suspect For Huazhu Group Data Breach

18 - 25 September 2018

ABS-CBN, one of the largest media and entertainment groups in the Philippines, took down two of its online shopping sites last week after they were found infected by the MageCart skimmer.
ABS-CBN, one of the largest media and entertainment groups in the Philippines, took down two of its online shopping sites last week after they were found infected by the MageCart skimmer. The payment skimmer had been installed on the sites since August and the personal and payment data of more than 200 customers were sent to Russian servers. The skimmer has been used by MageCart, a threat actor active since 2015, to siphon payment card information using malicious scripts. Other former victims of MageCart skimmer infection include the British Airways, TicketMaster and Feedify.

n addition, China has arrested a 30-year-old suspect on suspicion of hacking and siphoning customer data from hotels under Huazhu Group and attempting to sell it on overseas websites. Huazhu Group, one of China’s largest hoteliers, had made a police report in August after confidential information like guest membership information, personal IDs, email addresses, and check-in records were being sold online. Investigations are ongoing. 

References:
[1] ABS-CBN sites hacked; customer data stolen
[2] China arrests suspect for customer data leak at hotel operator Huazhu

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence