Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @eComscan
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @eComscan
-
Sanguine Security Labs proslijedio/la je Tweet
Joint press conference by Indonesian National Police &
#INTERPOL on Operation Night Fury led by INTERPOL’s#ASEAN Desk, sharing the successful arrest of 3 suspects involved in JS-sniffer campaign compromising e-commerce websites to steal credit card or online payment informationpic.twitter.com/2C12fvZ92X
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
More information & writeup at Sanguine Labs: https://sansec.io/labs/2020/01/25/magecart-hackers-arrested/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
While the arrest is a big step to combat the surge of web skimming, this group has only been responsible for less than 1% of online skimming activity since 2018. We estimate that 40 to 50 (more sophisticated) individuals are yet involved in this type of fraud.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The Indonesian arrests were part of Interpol "Operation Night Fury" to combat web skimming. Cyberteams from the US and EU contributed to the case.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We were contacted previously by a likely member of the group, claiming to have more information about the recent impersonations of Sanguine Security. "I am just blackhat who spread malware"pic.twitter.com/u7QGjigdpT
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
While the arrests already took place at December 20th, Sanguine has observed activity on the same skimming infrastructure afterwards, even up to January 15th. Indonesian police admits that more suspects are still at large but did not disclose further details.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Police reports 12 cases, but Sanguine identified 571 hacks with this groups modus operandi since 2017. They could be identified because of an odd debug message "Success gan!" (success bro) upon successful payment interception.pic.twitter.com/B0iNGrxHuP
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
One suspect admitted on live television that he had injected payment skimmers on foreign stores since 2017. He claimed to have earned enough money "to buy a jacket".pic.twitter.com/GDYXA4y4ez
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Indonesian police arrests 3 Magecart hackers who ran skimming operation since 2017. They recently registered "magecart[.]net" for payment interception. https://sansec.io/labs/2020/01/25/magecart-hackers-arrested/ …pic.twitter.com/kIp3m8IIwi
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Sanguine Security Labs proslijedio/la je Tweet
Thanks to data from
@ecomscan we were able to see a new digital skimmer/#magecart loader that's starting to be utilized. It's unique enough that it merits some discussion, even if it's also not fully operational. Let's call it the Prototype loader, I guess.pic.twitter.com/xkXXdNQ1SC
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Despite its glaring presence, the skimmer has been injected in numerous sites since Dec 12th and most are still active. We have reached out to all affected merchants.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Normally criminals go out of their way to hide their work, but this pasta fan didn't seem to care. Also, the card collection server is pizdasniff[.]site, which is proper Russian for "pussyskimmer". 2/3
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Skimmers write actual spaghetti code... In an unexpected plot twist, card-stealing malware was disguised as Italian cuisine.
#magecart#webskimmer 1/3pic.twitter.com/TiQdxh97at
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
In this example, the parmezan and spaghetti objects are used to test whether a victim has finished entering their credit card number, so that it can be transmitted to a malicious server.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
There's a recent increase in stores that get hacked via staff spear phishing/malware. Always run anti-virus software on your workstations and instruct staff to be aware of phishing.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New eComscan release 0.10.8, better support for Magento ISPs with options to follow external symlinks and filesystems.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Russian IPs using a fake "http://scan.sansec.io " record are mass scanning for several commerce vulnerabilities over x-mas. See others? Please report, thanks! 77.246.157[.]20 82.202.167[.]108pic.twitter.com/TKr4eh2DQZ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Sanguine Security Labs proslijedio/la je Tweet
Thanks to some data from
@eComScan I was able to likely tie this new technique to#Magecart Group 9. Two new domains were found: zoopim[.]online and chatstat[.]online. One of those ties directly to some domains that popped up about a year ago. 1/4https://twitter.com/AffableKraut/status/1206794642949193728 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Whole office is munching Christmas chocolates already. Awesome gift from our Magento hosting partner
@MageHostPro.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
)
First, what makes it unique?
1/17