Bad Packets Report has uncovered a Magecart campaign targeting the subscription website of Forbes. Magecart is an umbrella term for various criminal groups that attack e-commerce websites with the aim of injecting them with card skimming malware.
In this case, the threat actors managed to inject a malicious script into the page that grabs personal information and payment card data entered by customers on the checkout page and send it to a domain controlled by the attackers. The data collected by the script includes names, addresses, phone numbers and emails as well as payment card numbers, expiration dates and the CVV/CVC verification codes of credit cards. Security researchers have managed to take down the server collecting the stolen data.
Read more: Hackers Inject Magecart Card Skimmer in Forbes’ Subscription Site