The Cyber Threat Intelligence Blog | RiskIQ

Try Community Edition Contact Us

Blog

Recent Posts

RiskIQ Launches JavaScript Threats Solution Amidst Surge in Browser-based Cyber Attacks

July 31, 2019

Team RiskIQ

External Threat Management

The Future of Machine Learning is Adversarial

July 26, 2019

Adam Hunt

External Threat Management

RiskIQ’s 2019 Evil Internet Minute: All the Cyber Threats Jammed Into 60 Seconds

July 24, 2019

Team RiskIQ

External Threat Management

Spray and Pray: Magecart Campaign Breaches Websites En Masse Via Misconfigured Amazon S3 Buckets

July 10, 2019

Yonathan Klijnsma

Labs

Meet the ‘Gift Cardsharks’ Behind the Massive Campaign Targeting Victims with Commercially Available Tools

June 26, 2019

Team RiskIQ

External Threat Management

Five Things to ‘Know’ About Modern Executive Protection

June 21, 2019

Dan Schoenbaum

External Threat Management

The Last 18 Months of Mobile: Blacklisted Apps Rise, Antivirus Apps Prove More Harm Than Good

June 20, 2019

Team RiskIQ

External Threat Management

Elevate Your Investigations With Collaboration & Organization: PassiveTotal Projects

June 10, 2019

Team RiskIQ

Analyst

Magecart Supply-chain Frenzy Continues With AppLixir, RYVIU, OmniKick, eGain, AdMaxim, CloudCMS & Picreel

May 14, 2019

Yonathan Klijnsma

Labs

Previous
1
2
3
4
5
…
40
41
Next

Search

Categories

External Threat Management (235)

Labs (86)

Analyst (77)

Magecart (19)

Interesting Crawls (6)

Connect with us

Featured Post

Full(z) House: A Digital Crime Group Using a Full Deck to Maximize Profits

November 26, 2019

Yonathan Klijnsma

Tweets by @riskiq

RiskIQFollow

RiskIQ @RiskIQ·

Get your #RSAC 2020 party started by joining RiskIQ at IGNITE, hosted by @FlashpointIntel! Register now: https://t.co/XhmW7kUCY8

Reply on Twitter Retweet on Twitter1 Like on Twitter2 Twitter

Retweet on Twitter RiskIQ Retweeted

Yonathan Klijnsma@ydklijnsma·

Now you can see why we named it Magecart 🙃 it’s where it started in 2014. A group normally skimming data through Mage.php when a cart checkout is done, started pioneering a client-side JS skimmer.

The rest of the story can be read in our 2018 report: https://t.co/aGlU984pTU https://t.co/AwDlwdb36p

Reply on Twitter Retweet on Twitter13 Like on Twitter40 Twitter

Retweet on Twitter RiskIQ Retweeted

Eric JN Ellason @SlickRockWeb·

Based on data from @riskiq it appears this campaign by the Russian GRU to hack and breach Burisma in Ukraine started around 11-11-2019 (and possibly earlier) with the registration of the domain kub-gas[.]com cc @Ushadrons @file411 @IdeaGov #infosec #phishing #malware #disinfo

Reply on Twitter Retweet on Twitter8 Like on Twitter5 Twitter

RiskIQ @RiskIQ·

RiskIQ is excited to announce that growth expert Christophe Culine has joined our team as Chief Revenue Officer, leading our sales organization to great things in 2020 and beyond https://t.co/DYCAOfYeIa

Reply on Twitter Retweet on Twitter Like on Twitter2 Twitter

RiskIQ @RiskIQ·

RiskIQ's @ydklijnsma was on @DarknetDiaries to talk about the global phenomenon of #Magecart. Listen in on how credit card skimming on online purchases is happening—and happening often.

https://t.co/idgq5jTyvG

Reply on Twitter Retweet on Twitter8 Like on Twitter12 Twitter