Magecart Strikes Again
Ticketmaster, British Airways, and Newegg have all been compromised. Who’s next? Read our research to see how we discovered the breaches.
IDG Connect: 2017 State of Enterprise Digital Defense Report
Findings quantify the security management gap and business impact of external web, social, and mobile threats.
Get the Research Report
Frost & Sullivan: The Digital Threat Management Platform Advantage
The material benefits of a platform-based approach to security outside the firewall.
Read the Report
2018 Holiday Shopping Season Threat Activity: A Snapshot
The 2018 holiday shopping season was the largest ever for online retailers, but threat actors filled their pockets, too.
So what did the threat activity around this shopping frenzy look like?
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
EMA Radar™ Q4 2017 Report
RiskIQ ranked a technology and value leader in digital threat intelligence management.
Get the Analyst Report
Magecart, an umbrella term given to at least seven cybercriminal groups that are placing digital credit card skimmers on compromised e-commerce sites at an unprecedented rate, is responsible for recent high-profile breaches of global brands Ticketmaster, British Airways, and Newegg.
Over the past few years, Magecart operatives intercepted thousands of consumer credit card records, and with the biggest online shopping weekend of the year on the horizon, we anticipate Magecart activity to begin ramping up dramatically. Now more than ever, it’s critical to understand Magecart and its all-out assault on e-commerce.
We took to CBS News to explain this threat and how we can combat it. get to know your most present adversary and find out how you can avoid becoming a victim:
Watch our segment on CBS News
RiskIQ’s network of web crawlers, which crawls more than two billion web pages a day, views and interacts with websites from the perspective of a user. It’s this unique perspective that allows us to detect web-based attacks like Magecart while no one else can.
Check out the RiskIQ blog for more information on the Magecart threat.
Millions of Exim Mail Servers Are Currently Being Attacked - by @serghei
People have been actively patching Exim servers the day the CVE-2019-10149 was published. Attackers have begun abusing the vulnerability as seen by @0xAmit (https://t.co/kRdeqbAvsW). Here's @RiskIQ's breakdown of observed Exim service versions for 4.8x and higher. Keep patching!
Today @morphisec published their (good) article on FIN8 activities. However, the "back in business" part which media just jumped on doesn't seem to hold true. Those IOCs are just a continuation of campaigns dating to 2017, they are not "back" they were just spotted :). Thread 1/n
Elevate your investigations with collaboration & organization: PassiveTotal Projects https://t.co/CgyarvA6TN #ThreatHunting
Magecart's 'shotgun approach' to payment card theft is wreaking havoc on e-commerce sites https://t.co/rCBdQAAUqz by @jeffstone500