Magecart Attackers Ride into Segway’s E-commerce Website, Segue to Stealing Visitor Data

Magecart Attackers Ride into Segway’s E-commerce Website, Segue to Stealing Visitor Data

| | Blog, Resources
In late January, Malwarebytes reported that Segway, the manufacturer of insanely cool (*editors opinion), self-balancing, single-rider vehicles, was the victim of a Magecart attack. The attack may have exposed up to 600,000 visitors to malicious code embedded within Segway’s webpages. When customers entered payment details into the Segway website that ... Read More
More Client-side Attacks Seen in the Wild

More Client-side Attacks Seen in the Wild

| | Blog, Resources
Recently, Unit42 published an article detailing a specific formjacking attack which affected over 100 real estate sites via a single compromise. The post More Client-side Attacks Seen in the Wild appeared first on Source Defense ... Read More
Source Defense is One of the First to Offer Critical Security Technology in the SecurityScorecard Integrate360° Marketplace

Source Defense is One of the First to Offer Critical Security Technology in the SecurityScorecard Integrate360° Marketplace

SecurityScorecard, a key Source Defense partner and the global leader in cybersecurity ratings, recently launched its Integrate360° Marketplace, the industry’s first ecosystem for cyber risk ratings. For the first time, security professionals have a one-stop shop to discover, unlock, and deploy trusted partner solutions and pre-built integrations. Source Defense is ... Read More

“Magecart” – A Platform Agnostic Threat

| | Blog
Over roughly the past five years, there has been a dramatic evolution of client-side website attacks which now plague both website administrators and visitors. Although the fundamental technique which these attacks use is as old as web browsers themselves “Magecart attacks,” as they have come to be known, have exploded ... Read More
The Fall of iframes and the Evolution of Client-Side Security

The Fall of iframes and the Evolution of Client-Side Security

| | Blog, Uncategorized
How PayPal’s Braintree Payment Service Illustrates a Fundamental Flaw with iframe-based Security Getting Paid Online is a Tricky Business Processing payments online while maintaining the standards mandated by the Payment Card Industry Data Security Standard, commonly known as PCI-DSS, is a daunting task for merchants. Because of the complexity of ... Read More