Techly NewsGet the app

Get the latest tech news

Hundreds of e-commerce sites hacked in supply-chain attack


Attack that started in April and remains ongoing runs malicious code on visitors’ devices.

Hundreds of e-commerce sites, at least one owned by a large multinational company, were backdoored by malware that executes malicious code inside the browsers of visitors, where it can steal payment card information and other sensitive data, security researchers said Monday. One of the biggest mysteries surrounding Sansec’s discovery is how the malware that kicked off the supply-chain attack managed to remain dormant and undetected for six years before coming to life. Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords.

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of Hundreds

Hundreds

Photo of chain attack

chain attack

Photo of E-commerce sites

E-commerce sites

Related news:

News photo

Magento supply chain attack compromises hundreds of e-stores

News photo

Used EV batteries could power vehicles, houses or even towns – if their manufacturers share vital data | EV batteries are made of hundreds of smaller cells

News photo

Electronic Arts Lays Off Hundreds, Cancels 'Titanfall' Game

« FEMA Is Ending Door-to-Door Canvassing in Disaster Areas
Android's leaked battery status indicator bears a striking resemblance to iOS »