The Magento Phantom malware allows unauthorized users to access the impacted site and make system modifications to harvest payment card details, as well as other confidential information belonging to both customers and the compromised websites.
Website owners can identify if they have been affected in 3 different ways:
Protection of your website is straightforward:
There are many other protective controls you could add – take a look at the Payment Card Industry Data Security Standard for a guide on the minimum set of controls you should have protecting your customer data. After all, while credit card data is highly valuable right now, very soon businesses will be facing severe penalties for losing personally identifiable information too.
Alternatively, you can download our Whitepaper which includes more details on how to detect and identify Magento Phantom Malware on your website.