Media and Entertainment

Advertising Network Delivers Credit Card Stealing Code

15 - 22 January 2019

A new Magecart group, labelled as Group 12, has compromised a French advertising network to distribute card skimming scripts.
A new Magecart group, labelled as Group 12, has compromised a French advertising network to distribute card skimming scripts. The supply chain attack against Adverline content delivery network took place at the end of December 2018, where its JavaScript library was hacked to include the skimming script. The script was pushed to its subscribers, mostly e-commerce websites in Europe, and infected at least 277 websites to collect payment card details. 

References:
[1] New Magecart Attack Delivered Through Compromised Advertising Supply Chain
[2] New Year, Same Magecart: The Continuation of Web-based Supply Chain Attacks
 
 
 
 
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence