HARDWARE FLOGGER Newegg was found to have suffered a data breach that exposed its customers’ credit card information to hackers for a month.
The code lurked on the site from 14 August to 18 September, with malicious script placed on the checkout page of the retail site which was found to skim users’ credit card info.
That data was then sent to a hacker-controlled server that used a similar domain name and HTTPS certificate to the Newegg site.
This data breach attack is being attributed to the same hackers who swiped the data of British Airways customers after using a similar skimming code in the airline’s payment pages.
“While the functionality of the script is nearly identical, it is worth noting that the attackers have managed to minimise the size of the script even more, from 22 lines of code in the British Airways attack to a mere eight lines for Newegg, 15 if the code is beautified.”
And the blame for both data breaches is being laid at the doorstep of hacker group Magecart, at least it is by RiskIQ,
“The skimmer code is recognizable from the British Airways incident, with the same basecode. All the attackers changed is the name of the form it needs to serialize to obtain payment information and the server to send it to, this time themed with Newegg instead of British Airways,” the company said.
There’s no word on how many people the Newegg attack affected, but the company is alerting its customers, and given this was a deliberate rather than accidental data breach there’s a good change swiped credit card details could be used for fraud activity or sold on the dark web.
As such, Newegg customers would do well to keep an eye on their bank and credit card accounts to spot any dodgy activity before some hacker runs off with their hard-earned cash. µ
Source : Inquirer