Home arrow Fraud and Scams arrow Fraud Alerts arrow Multiple eCommerce Sites Hit By Card Skimming Malware
User Login

Lost Password?
No account yet? Register
Guard My Credit Menu
- - - THE ISSUES - - -
Fraud and Scams
Credit Issues
Identity Theft
Privacy Issues
Our Children
Politics & Politicians
Guard My Credit Links
Helpful Pamphlets
- - - - - - - - - - - - - - -
Contact Us
About Our Site
Join the Fight
ACCESS is a non-profit, tax exempt consumer advocacy group.

Donations are tax deductable.

Guard My Credit Hits
9747166 Visitors
Multiple eCommerce Sites Hit By Card Skimming Malware PDF Print E-mail

January 6, 2021 - Some well-known eCommerce sites have been hit in what appears to be a coordinated effort to skim credit card data from them. The malware used is known as a Magecart script and it is specifically designed to avoid detection. This particular attack targeted Shopify, Zencart, Bigcommerce and Woocommerce according to Bleepingcomputer.com. At present, it is unknown how many consumers may have been impacted by the attack. 


The reason that Magecart scripts are so difficult to detect is that they generate fake payment pages on the fly. These fake pages look like the real thing but when you go to submit your payment, an error message will appear that makes it look like you entered incorrect information. You'll then be transferred to the real payment page… which looks identical to the fake one… to complete your purchase. Since it isn't uncommon for people to fat-finger a credit card number, there are usually no red flags raised with consumers. The first indication that most people have that their data has been stolen is when fraudulent charges begin to appear on their credit card bills.

This particular script has apparently been in operation since August of last year. With that in mind, anyone who has make a purchase through any of the above-mentioned sites since then should be closely monitoring their credit card bills.

It is also worth noting that virtually all ecommerce sites can be vulnerable to this type of malware. We're now at a point that when you enter your credit card number with any website… even well-known sites… you have to realize that there is a real possibility that your information will be compromised. And the only way to combat this particular form of fraud is by monitoring your credit card bills. Freezing your credit file won't stop this type of fraud since the thieves are stealing information on already established lines of credit.

by Jim Malmberg

Note: When posting a comment, please sign-in first if you want a response. If you are not registered, click here. Registration is easy and free.

Follow ACCESS  


Only registered users can write comments!

3.25 Copyright (C) 2007 Alain Georgette / Copyright (C) 2006 Frantisek Hliva. All rights reserved."

Guard My Credit Polls
#1 - Why did you visit our site today?
.•*´¯☼ ♥ ♥ Your Support of These Links Is GREATLY Appreciated ♥ ♥ ☼¯´*•.
Go to top of page
Home | Contact Us |About Us | Privacy Policy
eXTReMe Tracker
02/28/2021 03:16:11