A researcher with Aite Group recently discovered a cluster of 80 e-commerce websites that had been injected with card-skimming malware by Magecart actors. Magecart is an umbrella term for various criminal groups that attack web shops with the aim of injecting them with malware designed to steal payment card information provided by visitors.
The research, which was commissioned by Arxan Technologies, also revealed another 100 compromised websites, thereby underscoring how widespread Magecart attacks have become over the last few years. Aaron Lint of Arxan noted that “while 25% of the websites are reputable brands, the disturbing thing is how many medium-sized and smaller businesses are getting caught in Magecart’s web,” adding that “any website that conducts financial transactions or collects user credentials is a target.”
Read more: Magecart Shops for Victims as E-Commerce Market Grows