Subscribe to our Blog
Here is a recording made this morning of a demo transaction on a live website with the browser showing the background website activity in the browser.
Here's the breakdown of what actions our "buyer" made:
Live website on the left, developer tools view on the right showing website background activity.
0:04 - Buyer enters name, credit card number, expiry date and CVV number.
0:14 - Buyer checks the order and at the same time, network activity shows customer data being captured and sent directly out to the attacker via email (partially obfuscated to protect identity of hacked website).
0:19 - Buyer's credit card number harvested, along with name and address.
0.24 - Buyer's CVV number is harvested.
The buyer's personal data and payment card data is STOLEN before the buyer clicks "Order and Pay Duty".
And that's it - simple and highly effective theft.
This is affecting MANY Magento websites - is yours affected?
Benjamin Hosack
Benj Hosack is a Director and co-Founder of Foregenix Limited. Foregenix is a specialist information security business delivering services in Forensics, PCI DSS, PCI P2PE, PA-DSS and information security solutions within the Payment Card Industry. Our technologies are designed to simplify security and PCI Compliance. Specialties: Cardholder Data Discovery - defining and reducing PCI DSS Scope / PA-DSS / PCI DSS / P2PE / Account Data Compromise Investigations. We are specialists in the Payment Card Industry and work with all types of companies in the payment chain (Acquiring banks, Processors, hosting providers, web designers, merchants, systems integrators etc).
See All Articles