Magecart Strikes Again
Ticketmaster, British Airways, and Newegg have all been compromised. Who’s next? Read our research to see how we discovered the breaches.
IDG Connect: 2017 State of Enterprise Digital Defense Report
Findings quantify the security management gap and business impact of external web, social, and mobile threats.
Get the Research Report
Frost & Sullivan: The Digital Threat Management Platform Advantage
The material benefits of a platform-based approach to security outside the firewall.
Read the Report
2018 Holiday Shopping Season Threat Activity: A Snapshot
The 2018 holiday shopping season was the largest ever for online retailers, but threat actors filled their pockets, too.
So what did the threat activity around this shopping frenzy look like?
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
EMA Radar™ Q4 2017 Report
RiskIQ ranked a technology and value leader in digital threat intelligence management.
Get the Analyst Report
The Many Breaches of Magecart
In 2015 a digital credit card skimming group that injected code into the online shopping software provided by Magento, dubbed ‘Magecart’ was first discovered by RiskIQ in 2015. In October of 2017 RiskIQ exposed the group’s offline operations, which monetizes its credit card theft and mitigates risk to its members by recruiting unwitting mules in the US via Russian-language job postings to ship stolen goods to Eastern Europe.
RiskIQ then discovered the July breach of Ticketmaster was not an isolated incident as initially reported, but rather part of a worldwide campaign affecting potentially thousands of sites by hacking third-party components used by e-commerce brands. The latest chapter in the Magecart saga reveals the group’s role in the targeted breach of British Airways, which used malicious code meant to mimic the functionality of the site to intercept the payment information of 380,000 customers.
Join RiskIQ Researcher, Yonathan Klijnsma, to learn:
Click the button below to watch the on-demand webinar.