CYBER NEWS

5,761 Negozi on-line infettati da malware, Gli amministratori non si cura

lo shopping-online-skimming-malware stforum

2016 ha visto i più alti tassi di malware in termini di negozi online in esecuzione su piattaforme come Magento e OpenCart. Per concludere che, ricercatore Willem de Groot from Byte.nl has been analyzing online stores infected with malware since November 2015. This is when he first saw an increase in these infections.


Online Shops Malware Infections Grow Continuously

The uptake in such cases is associated with the better anonymity that online skimming provides compared to offline ATM skimming. This increasing online skimming has led to a growth in carding sites.

What is a carding site? It’s the type of underground forum that sells credit data details stolen via compromised online store payment pages and PoS malware.

Per essere più particolare, online skimming has jumped to 69% in 10 mesi. This uptake is not that surprising considering that an Internet scan of 255,000 online stores has showed that malware is lurking on 3,501 of those shops. The researcher proceeded with a second scan in March 2016 to find out that the number of infected stores has jumped to 4,476, o 28%. In confronto, a settembre 2016, he found 5,925 infected online shops, che è 69% up compared to November last year.

Correlata: Attacchi Nuovo Magecart malware infettare più di 100 Rivenditori online

One quite recent example of such malware is the MageCart. Infatti, de Groot repeated the scan once again on October 10, and found 5,911 infected stores. Ottobre 12, the number was down to 5,761 che significa che 334 admins successfully cleaned up their stores.


What Online Shops Are Affected by Malware and Online Skimming?

Sfortunatamente, the list of infected online shops includes some high-profile places. Examples the researchers revealed include the online store of Icelandic singer Bjork, the store of Audi South Africa, and the website of the NRSC (National Republican Senatorial Committee).

sorprendentemente, it turns out that many admins don’t care enough or just don’t know enough to clean up their stores. When he contacted people, he received some pretty bothersome replies, come:

  • We don’t care, our payments are handled by a 3rd party payment provider.
  • Thanks for your suggestion, but our shop is totally safe. There is just an annoying javascript error.
  • Our shop is safe because we use https.
Correlata: Chi gestisce WordPress antiquato e versioni Drupal? corporazioni!

Other conclusions derived from de Groot’s analysis:

  • Not only is the number of infections steadily growing but also the malware is getting more sophisticated.
  • The number of online skimming malware is increasing, troppo.
  • In less than a year, online skimming malware has evolved from one single threat to nine varieties and three distinct malware families.

What can be done? The researcher suggests that:

Companies such as Visa or Mastercard could revoke the payment license of sloppy merchants. But it would be way more efficient if Google would add the compromised sites to its Chrome Safe Browsing blacklist. Visitors would be greeted with a fat red warning screen and induce the store owner to quickly resolve the situation.

Milena Dimitrova

Milena Dimitrova

Uno scrittore ispirato e gestore di contenuti che è stato con SensorsTechForum fin dall'inizio. Incentrato sulla privacy degli utenti e lo sviluppo di malware, crede fortemente in un mondo in cui la sicurezza informatica gioca un ruolo centrale. Se il buon senso non ha senso, lei sarà lì per prendere appunti. Quelle note possono poi trasformarsi in articoli! Seguire Milena @Milenyim

Altri messaggi

Seguimi:
Cinguettio

Lascio un commento

Il tuo indirizzo email non verrà pubblicato. I campi obbligatori sono contrassegnati *

Termine è esaurito. Ricarica CAPTCHA.

Condividi su Facebook Quota
Loading ...
Condividi su Twitter Tweet
Loading ...
Condividi su Google Plus Quota
Loading ...
Condividi su Linkedin Quota
Loading ...
Condividi su Digg Quota
Condividi su Reddit Quota
Loading ...
Condividi su Stumbleupon Quota
Loading ...