This problem affects many countries around the world, but mainly in America and Europe. The attackers have succeeded infect websites to steal customer bank details when they go to make a purchase. This occurs just at the moment in which they are going to make the payment.
They infect websites to steal
It is a new Magecart campaign, which is capable of hijacking legitimate web pages and stealing bank cards. They have the ability to hide skimmers on e-commerce web pages. When the victim makes the purchase and enters the data, all that information ends up on a server controlled by cybercriminals.
Basically what they do is inject malicious scripts. They attack those websites and gain access to the victim’s bank card details and information, right in the process of making a payment. From Akamai, the computer security company behind this discovery, they indicate that many victims are unaware that their data has been stolen.
One of the problems is that hackers can attack legitimate, reputable web pages. This means that the victim does not suspect that she may be dealing with a fraud. It is not the same as if they create a new unknown page, for example. This is one of the keys to the success of these attacks.
Regarding how they manage to infect these websites, from Akamai they indicate that the method is not clear but it is usually through vulnerabilities. They exploit bugs that they find in those websites, for example in WordPress, Shopify, etc. They can also take advantage of third-party services that use those pages.
This makes it also depend on the websites we visit. That is, they are responsible, for example, for keeping the pages updated and correcting possible vulnerabilities. This will prevent many computer attacks, which at any given time can also affect the visitors of those sites.
How to avoid these attacks
It’s always important use good payment methods. Although buying online is reliable and the risk of attacks is minimal, as you can see, it can be possible. Therefore, from RedesZone we recommend that you use virtual or rechargeable cards to pay online. Don’t use your main card. This will reduce the risk of being robbed.
It is also essential to use reliable platforms and not buy something at the slightest doubt. For example, do not make a payment through a link that has come to you through social networks or that you have seen in comments on a forum. It could be a scam and steal your bank details without you realizing it.
On the other hand, it is key to have the device updated correctly. That will help you correct possible errors you have and reduce the risk of attacks. Likewise, using good security software will help you detect threats in case they send you some malware.
As you can see, buying online can become a problem if you come across web pages that have been infected. It is essential to take precautionary measures and keep devices protected so that online commerce does not become a security risk. You can always check if a website is reliable to buy.