Contact Contact Us

Advertising Network Delivers Credit Card Stealing Code

A new Magecart group, labelled as Group 12, has compromised a French advertising network to distribute card skimming scripts. The supply chain attack against Adverline content delivery network took place at the end of December 2018, where its JavaScript library was hacked to include the skimming script. The script was pushed to its subscribers, mostly e-commerce websites in Europe, and infected at least 277 websites to collect payment card details.

[1] New Magecart Attack Delivered Through Compromised Advertising Supply Chain
[2] New Year, Same Magecart: The Continuation of Web-based Supply Chain Attacks

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883