The shopping cart malware known as Magecart is still one of the most popular tools in the attacker’s toolkit — and despite efforts to mitigate and eradicate its presence, it’s the unwanted gift that just keeps on giving. It was first detected in 2018 when it was behind the notable Ticketmaster UK exploit and is still being used today. The name refers to an open-source shopping cart application called Magento, and is used to steal credit card data, which is then sold in bulk to cybercriminals across the dark web, the shady part of the internet reachable with special software.
Read full article on SiliconANGLE