NBA-team of Atlanta Hawks webshop was hit through formjacking...

Again fallen victim through the weaknesses of PHP driven CMS, in this case Magenta,
reported by Dutch researcher, Willem de G.: https://labs.sansec.io/2019/04/24/atlanta-hawks-magecart/
Atlanta Hawks say the malicious code has now been removed, but Wiilem de G. is doubtful:
https://twitter.com/gwillem/status/1120985161951318016
See also https://www.magereport.com/scan/?s=https://hawksshop.com/ with still many non-patched or mitigated issues.

About the enormous threat of formjacking posed to websites, read:
https://www.security.nl/posting/598734/Symantec%3A+duizenden+webwinkels+getroffen+door+formjacking

A spam hack still seems there: https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=aHx3a3NzaF1wLl5dbQ%3D%3D~enc

polonus

Ha, I was thinking this was a spammer at work with the first part of the title :wink:

Hi DavidR,

That was not the specific obfuscated spam link, I was on about :wink:
Good you did not take the whole thread out then as content spam, which it was not.

But all joking apart, it is still a sad thing, that thousands of such PHP driven CMS websites (Magenta, WordPress etc.)
are often completely open to this form of abuse by cybercriminals.

When finally minimal security standards of some sort will be brought in by authorities,
so not every Jack and Jill may come up with their own home-brew of website’s insecurity?
And I have come across some real pearls in that respect lately.

I have warned against such practices for over twelve years here on the forums now,
and it all have been preaching to the choir and “lamenting”, that did not produce much result.
It’s a drag, dear DavidR, it certainly is, and the drama goes on and on and on…

polonus

Unfortunately, you don’t need a license to build/run an internet site as you do to drive.

That may be a smart idea

That, and some sort of security certification should be required. :slight_smile: