"Newly Discovered Magecart Infrastructure Reveals the Scale of Ongoing Campaign"

A recently discovered Magecart skimming campaign has origins in an earlier attack activity dating back to November 2021. Magecart is a cybercrime syndicate made up of dozens of subgroups specializing in cyberattacks involving digital credit card theft through the injection of JavaScript code on e-commerce storefronts, typically on checkout pages. Researchers at Malwarebytes revealed that two malware domains, which have been identified as hosting credit card skimmer code, are part of a larger infrastructure used to carry out the intrusions. The researchers were able to connect these two domains to a previous campaign from November 2021, which was the first instance of a skimmer checking for the use of virtual machines to their knowledge. Based on the additional domains discovered, the earliest evidence of campaign activity dates back to at least May 2020. This article continues to discuss newly discovered Magecart infrastructure and what it suggests about the scale of the ongoing campaign. 

THN reports "Newly Discovered Magecart Infrastructure Reveals the Scale of Ongoing Campaign"