WHAT IS EMAIL BOMBARDMENT?

-
Image
An email bombing is an attack on your inbox that involves sending massive amounts of messages to it. Sometimes these messages are incomprehensible. But more often, they will be confirmation emails for newsletters and subscriptions. Thus, in the latter case, the attacker uses a script to search for forums and newsletters on the internet. Then they sign up for an account with your email address. Each will send you a confirmation email, asking you to confirm your address. Also, this process is repeated on as many unprotected sites as the script can find. The term Email Bombing or Email Bombing; it can also refer to flooding an email server with too many emails. In an attempt to overwhelm the server and disable it. But that's not the goal here; it would be a challenge to cut down on the modern email accounts used. Meanwhile, Google or Microsoft email servers, anyway. So instead of a denial of service (DOS) attack; against the email servers you are using. Also, the flood of messages...
2 comments

WHAT IS FORMJACKING AND HOW TO PREVENT THIS ATTACK

-

Formjacking is a new invisible threat in cyberspace today. The term “Formjacking” is a combination of “online/website form” and “hijacking”. This term brings about the digital version of the well-known skimming by cybercriminals.

what is formjacking and how to prevent this attack
Like it sounds, this kind of threat involves a cybercriminal taking over forms on websites by exploiting their security weaknesses. Cybercriminals use lines of malicious JavaScript code on the checkout page forms of ecommerce websites to steal client payment information such as credit card numbers, usernames and passwords, social security numbers among other important/private data. The major aim of formjacking is to reap the maximum amount valuable data as possible that website clients submit via ecommerce forms.

How Does This Occur?

There are many formjacking vectors that cybercriminals will use to launch attacks to get access to any information that they want, as noted below;

Fraudsters prepare card slots at ATMs with their own card reader. The pin code is spied out simultaneously with small cameras. The credit card are often duplicated with the collected data.

The user’s payment card data can be trapped when they use the card on an e-commerce payment page that has been injected with a JavaScript code. When the user clicks “submit,” the malicious JavaScript code collects the entered information. This code is injected on ecommerce sites by cyber threat actors with an aim to gather information like payment card details, home and business addresses, phone numbers and more. Once the information has been collected, it is then transferred to the attacker’s servers, that is then used for financial gain.

Another menace may happen when the criminals use this data for identity theft or payment card fraud.

Summit’s 2018 project frontline that brings about Cyberspace Security Report, shows that 92% of credential gathering and data exfiltration was achieved from different websites and online forums.

Notable Examples of Formjacking Attacks that have been successful include British Airways and Ticketmaster attacks that were believed to be perpetrated by Mage cart. The British Airways attack resulted in more than 380,000 credit cards being stolen at an estimated loss of $17 million. This is in addition to the record £183 million fine that was levied against the company due to its lack of General Data Protection Regulation (GDPR) compliance. GDPR allows fines of up to 4% of a company’s annual turnover for noncompliance.

Who’s Behind the Attacks?

Formjacking belongs to man-in-the-middle attacks, during which attackers position themselves unnoticed between the communication partners using malware. But who are the unknowns? Known to move since 2015, “Mage cart” refers to a minimum of seven different hacking groups and has become a household name in recent years as these groups were responsible for the well-known cyberattacks on large companies including British Airways, Ticketmaster, and Newegg.

Mage cart attack methods involve browser-based injection of malicious JavaScript code, often well-disguised as a Google tag or other common website analytics code snippet. This malicious code “skims” form entry fields for payment card data, names, addresses, and even personal information or protected health information (PHI)–depending on what sort of website is attacked.

Mage cart attackers are best known for hacking into Magneto handcart pages, but they're not limited to only payment card data. Formjacking has been discovered on all types of pages and sites: healthcare sites, login pages, etc.

How Can You Protect Yourself?

Online users may fail to detect and prevent formjacking during online shopping because the infected pages look unchanged. It is therefore advisable to restrict purchases to large shops which, in contrast to small e-commerce websites, are equipped with more extensive security systems.

Use the best software that gives you total security from all the threats and cyber-crimes that can happen on the big sites.

Credit cards should even have a second level of defence within the sort of 3D Secure in MasterCard systems. For example, no transaction is possible without a Transaction authentication number (TAN) code sent to user’s smartphone.

The responsibility for protecting user’s data against e-skimming attacks lies back to the companies. It is imperative that the company keeps their security systems up to date. This is to specialize in keeping entry gates for malware into the system, closed with extensive protective measures.

Running vulnerability scanning and penetration testing to identify loopholes or weaknesses in your cyber security defences.

Monitoring outbound traffic on your site to be aware of any traffic from your site to another location.

Comments

Post a Comment

Popular posts from this blog

WHAT IS EMAIL BOMBARDMENT?

-
Image
An email bombing is an attack on your inbox that involves sending massive amounts of messages to it. Sometimes these messages are incomprehensible. But more often, they will be confirmation emails for newsletters and subscriptions. Thus, in the latter case, the attacker uses a script to search for forums and newsletters on the internet. Then they sign up for an account with your email address. Each will send you a confirmation email, asking you to confirm your address. Also, this process is repeated on as many unprotected sites as the script can find. The term Email Bombing or Email Bombing; it can also refer to flooding an email server with too many emails. In an attempt to overwhelm the server and disable it. But that's not the goal here; it would be a challenge to cut down on the modern email accounts used. Meanwhile, Google or Microsoft email servers, anyway. So instead of a denial of service (DOS) attack; against the email servers you are using. Also, the flood of messages...
Read more

TESTING THE ANTIVIRUS THAT YOU USE

-
Image
Have you ever wondered how antivirus is tested before it is available on the market? The truth is that, despite what you may think at first, these applications pass a series of tests that have the mission, obviously, of verifying their effectiveness. Well, for most IT security vendors these assessments are now out of date. Testing an antivirus before its launch is something that is done regularly. Thus, the AV Tests (name by which the aforementioned tests are known) allow users to choose which antivirus they want to install on their computers, knowing what their main characteristics are and what they protect against. So far everything normal. So what is the problem? Some manufacturers of security solutions have raised their voices against the fact that these tests are “not modernized”. In what sense? Some companies claim that, although the complexity of security applications has grown considerably in recent times, when conducting evaluations they do not test the new technologies w...
Read more

WHAT IS PAZERA TROJAN AND HOW TO AVOID IT

-
Image
Pazera Trojan is a recently discovered computer malware that spreads in active attack campaigns. The current wave of infections is due to a complex Android mobile threat, including this Windows-based malware. The mechanisms of infection depend on the manipulation of the victim. Once installed on a given computer, the built-in engine will lead to many dangerous actions. Read our in-depth analysis of the samples and learn how to eliminate active infections in this article. Pazera Trojan - Virus Infection Methods The Pazera Trojan is a dangerous threat that is sent as part of a targeted campaign with the main malware being the Trojan. Originally, this has been used in an attack carried out by an Android Trojan, seeking to infect mobile users. Through the elaborate and complex chain of infections, the Pazera Trojan will install itself. Some of the observations made by security experts who analyze this malware are that the main Trojan infection that has been created by an unknown hackin...
Read more