“Life in the SOC” is a Blog Series that shares experiences of the BlueVoyant SOC defending against the current and prevalent attacks encountered by our clients. The blogs discuss successful detection, response and mitigation actions that can improve your defensive capabilities.
Magecart is a consortium of malicious hacker groups who target online shopping cart systems, usually the Magento CMS (hence the name). They steal customer payment card information.
Shopping carts are attractive targets because they collect payment information. When malware taps into this data stream, you have a ready-made card collection tool. The problem facing ecommerce sites is they don’t properly vet the code that is used with these third-party pieces.
The following is a listing of noteworthy campaigns involving Magecart seen in the month of January: