August 2024 eCommerce ThreatScape - Digital Skimmers and Loaders

The eCommerce ThreatScape Report for August 2024 showed that the industry is facing a level of attack and compromise that we have not seen in nearly a decade of monitoring eCommerce websites for signs of data compromise.

Here are a few key highlights from the report:

• Hacked sites detected: over 27,000.
• Significant growth in Digital Loaders - showing attackers are adapting to multi-stage attacks.
• And the top 3 targeted platforms - WordPress, Magento 2 & Magento 1.

There is a significant change taking place in the way criminals are targeting eCommerce websites - in response to the industry's capability to defend.

A few years ago, Digital Skimmers, like Magecart, were the dominant malware being deployed to steal payment card data from eCommerce sites.  

The industry has largely figured out how to detect Magecart attacks, so the criminals have had to adapt to their current multi-stage attack approach.

This is what we are seeing now; infected sites with innocuous Digital Loader malware designed to bring in digital skimmers at the appropriate moment in the check out process.

Most security solutions do not know what Digital Loaders look like, or have limited experience with them, which is why we are detecting such a significant surge in Digital Loaders - we are seeing thousands and thousands of eCommerce sites infected with this cunning malware.

Read the report for more information on the eCommerce ThreatScape in August 2024:

eCommerce ThreatScape - August 2024.pdf

Download PDF • 12.25MB

If you do not have a free ThreatView account to detect this malware, please sign up and get ahead of the problem:

GET PROACTIVE SECURITY

‍