Contact Contact Us

ABS-CBN Sites Compromised By MageCart Skimmer, China Arrests Suspect For Huazhu Group Data Breach

ABS-CBN, one of the largest media and entertainment groups in the Philippines, took down two of its online shopping sites last week after they were found infected by the MageCart skimmer. The payment skimmer had been installed on the sites since August and the personal and payment data of more than 200 customers were sent to Russian servers. The skimmer has been used by MageCart, a threat actor active since 2015, to siphon payment card information using malicious scripts. Other former victims of MageCart skimmer infection include the British Airways, TicketMaster and Feedify.

n addition, China has arrested a 30-year-old suspect on suspicion of hacking and siphoning customer data from hotels under Huazhu Group and attempting to sell it on overseas websites. Huazhu Group, one of China’s largest hoteliers, had made a police report in August after confidential information like guest membership information, personal IDs, email addresses, and check-in records were being sold online. Investigations are ongoing.

[1] ABS-CBN sites hacked; customer data stolen
[2] China arrests suspect for customer data leak at hotel operator Huazhu

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883