Home Malware Magecart-related arrests made in Indonesia

Magecart-related arrests made in Indonesia

by ethhack

Three members of a group that infected hundreds of websites from around the world with payment card stealing malware were arrested in Indonesia, the International Criminal Police Organization (INTERPOL) announced Tuesday. The arrests are the result of a larger multi-national law enforcement investigation that continues in other countries from the Southeast Asia region.

The three suspects, aged 23, 27, and 35, are accused of using the payment card details they stole to purchase electronic and luxury items and then selling them for a profit. They are facing prison sentences of up to 10 years.

INTERPOL refers to the malware used by the group as a JavaScript sniffer, but this is more commonly known in the security industry as a web skimmer. It consists of a malicious piece of JavaScript code that is inserted into a website — typically in its checkout pages — and is designed to steal the personal and payment information entered by customers.

The most notorious of these web skimmers is called Magecart and has been used in a large number of attacks over the past few years, including against very high-profile brands. Magecart is used by over a dozen groups of hackers whose campaigns range from basic to very sophisticated and from widespread to highly targeted. In some of the more stealthy attacks the code is customized to work only with the victim’s website.

Russian cybersecurity firm Group-IB, who worked with INTERPOL and the Indonesian Police on this investigation, tracks the sniffer used as GetBilling, but according to another company called Sanguine Security, it is part of the Magecart family.

“Sanguine Security has been tracking the activity of this group for several years and has identified not 12 but 571 hacks by the same individuals,” the company said in a blog post following the arrests announcement. “These hacks could be attributed because of an odd message that was left in all of the skimming code: ‘Success gan !’ [which] translates to ‘Success bro’ in Indonesian and has been present for years on all of their skimming infrastructure.”

Copyright © 2020 IDG Communications, Inc.

Source link

Related Articles

Leave a Comment