Digital skimming hackers targeted the website of major US gun producer Smith & Wesson, as well as their customers, over the weekend. Smith & Wesson is based out of Springfield, Massachusetts, and was attacked on Black Friday during one of the highest-grossing shopping days of the year. Smith & Wesson employees warned that although the code was injected into the site on the 27th of November, it was still active for cyber Monday the following week.
The hackers have been using the name Sanguine Security, a real security company, to legitimize the campaign. The hackers registered skimming domains in the name of an employee, disguised as Sanguine protection. The name was likely chosen deliberately as the legitimate company works to protect vendors from Magecart attacks.
Read More: Magecart Hackers Open Fire at Smith & Wesson Customers