New Year, Same Magecart: The Continuation of Web-based Supply Chain Attacks

  • Thursday, 18 Apr 2019 3:30PM EDT (18 Apr 2019 19:30 UTC)
  • Speakers: Dave Shackleford, Yonathan Klijnsma

Since 2015, RiskIQ has been tracking, naming and documenting the threat now publicly known as Magecart. Having publicized on the major breaches of Ticketmaster, British Airways and Newegg amongst others, RiskIQ has always had a unique insight into this threat and its evolution.

In this talk, we'll go through the evolution of how we got to web-based skimmers from the'typical' breaches of payment data in bulk. We'll break down:

  • How the first criminal group figured out how to perform web-skimming
  • What mistakes they made
  • How their initial developments started this explosive growth of web-skimming

In addition, we'll explain in detail the unique aspects to certain groups, but especially the way skimming attacks (and the skimmers themselves) work and how organizations can help protect themselves to it.