Financial data stolen from British Airways in a recent attack by a group known as Magecart is being hawked on the dark web, the researchers who attributed the attack claim.
Security company RiskIQ, along with Flashpoint, released a detailed study on Magecart ― which they said included several groups ― in which the claim was made.
The two companies also said credit card data stolen from customers of the IT firm Newegg was up for sale.
British Airways disclosed in September that the financial and personal details of 380,000 customers had been stolen from its site.
The Newegg hack also took place in September. The infiltration was done using a new domain named neweggstats.com that the attackers had registered in August.
RiskIQ and Flashpoint said there were several Magecart groups:
Group 1 & 2 Casts a wide net for targeting, likely using automated tools to breach and skim sites. Monetises with a sophisticated reshipping scheme.
Group 3 Goes for a high volume of targets to go for as many victims as possible, but is unique in the way its skimmer works.
Group 4 Extremely advanced, this group blends in with its victims' sites to hide in plain sight and employs methods to avoid detection.
Group 5 Implicated in the breach of Ticketmaster, this group hacks third-party suppliers to breach as many targets as it can.
Group 6 Extremely selective, only going for top-tier targets, such as British Airways and Newegg to secure a high-volume of traffic and transactions.
RiskIQ and Flashpoint said the Magecart intrusions had first begun in 2o15. The report they released has indicators of compromise for each group.
47 REASONS TO ATTEND YOW! 2018With 4 keynotes + 33 talks + 10 in-depth workshops from world-class speakers, YOW! is your chance to learn more about the latest software trends, practices and technologies and interact with many of the people who created them.
Speakers this year include Anita Sengupta (Rocket Scientist and Sr. VP Engineering at Hyperloop One), Brendan Gregg (Sr. Performance Architect Netflix), Jessica Kerr (Developer, Speaker, Writer and Lead Engineer at Atomist) and Kent Beck (Author Extreme Programming, Test Driven Development).
YOW! 2018 is a great place to network with the best and brightest software developers in Australia. You’ll be amazed by the great ideas (and perhaps great talent) you’ll take back to the office!
Register now for YOW! Conference
Sydney 29-30 November
Brisbane 3-4 December
Melbourne 6-7 December
Register now for YOW! Workshops
Sydney 27-28 November
Melbourne 4-5 December
REGISTER NOW!
LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACKAustralia is a cyber espionage hot spot.
As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has the high potential to be exposed to risk.
It only takes one awry email to expose an accounts’ payable process, and for cyber attackers to cost a business thousands of dollars.
In the free white paper ‘6 Steps to Improve your Business Cyber Security’ you’ll learn some simple steps you should be taking to prevent devastating and malicious cyber attacks from destroying your business.
Cyber security can no longer be ignored, in this white paper you’ll learn:
How does business security get breached?
What can it cost to get it wrong?
6 actionable tips
DOWNLOAD NOW!
