1

While monitoring a malicious domain, www.magento-analytics[.]com, for over last seven months, researchers found that the attackers have been injecting malicious JS scripts hosted on this domain into hundreds of online shopping websites.

The JavaScript scripts include the digital credit card skimming code which automatically steal payment card information, such as credit card owner name, credit card number, expiration time, CVV information, entered by its customers.

Further analysis revealed that the malicious script send stolen payment card data to file hosted on the magento-analytics[.]com server controlled by the attackers.

“Take one victim as an example, www.kings2.com, when a user loads its homepage, the JS runs as well. If a user selects a product and goes to the ‘Payment Information’ to submit the credit card information, after the CVV data is entered, the credit card information will be uploaded,” researchers explain in a blog post published today.

Having Magento in the domain name doesn’t mean that the malicious domain is anyhow associated with the popular Magento ecommerce CMS platform; instead the attackers used this keyword to disguise their activities and confuse regular users.

The malicious domain used in the campaign is registered in Panama, however, in recent months, the IP address moved around from “United States, Arizona” to “Russia, Moscow,” then to “China, Hong Kong.”

While researchers found that the malicious domain has been stealing credit cards information for at least five months with a total of 105 websites already infected with the malicious JS, they believe this number could be higher than what appeared on their radar.

Dawood Khan
Founder and Editor-in-Chief of 'Hack Hex,' Information Security professional, developer, whitehat hacker and an amateur guitarist.

1 Comment

  1. NEED A HACKED ATM CARD WITH PIN?
    We Sell Physical Loaded ATM Cards . It Is A Cloned Card That Can Be Used To Withdraw Cash At Any ATM Machine. This Cards Comes In Visa/MasterCard. Therefore It Works At Any ATM Machine That Accept Visa/MasterCard Worldwide.

    CAN I USE THIS READY MADE ATM CARD TO BUY STUFF IN STORES? OR ONLINE SHOPPING? PAY BILLS?
    Yes, With This Physical ATM Card, You Can Use It To Pay Stuff At Stores Through POS. With This ATM Card Information, You Can Use It Online To Pay Bills Or Do Online Shopping. When You Order For This Card, Full Information About The Card Will Be Given To You. We Also Reload Your Card When Funds Exhausted.

    DO I NEED TO ORDER NEW CARD EVERY TIME I SPENT THE FUNDS FINISH?
    No, If You Have Already Ordered Our Card, There Is No Need To Keep Ordering New Cards, Just Contact Us For A Reload. We Shall Easily Reload The ATM Card Already In Your Possession

    HOW LONG DOES IT TAKE TO RECEIVE ATM CARD IN MY COUNTRY?
    If You Are In ASIA, You Will Receive Your Card In 2-3 DAYS With Guaranteed. If You Are Outside Asia Your Card Will Arrive To You Between 3 – 5 Business Days Guaranteed.

    HOW SAFE IS THIS CARD?
    It Is 100% Safe To Use This Card. Because It Will Be Shipped To You As A Gift Card.

    DO YOU ALSO RELOAD ANY OTHER CARD NOT FROM THIS CLONED CARDS?
    Yes, We Can Reload Any Active And Valid Cards, Any Type Of Card Just Contact Us For A Reload (Prepaid Cards, Credit/Debit Cards).
    HOW DO I ORDER FOR THE ATM CARD?
    EMAIL: [email protected]

    HOW DO WE MAKE THIS CARD?
    We Use A Machine MSR To Clone This Cards . You Can Also Buy This Machine From Us Also. You Can Order For The ATM Card Either The Designed Card Or The Blank Card But Still Same Information On Them.
    EMAIL: ([email protected])
    whatsapp number..+393512840729

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You may also like