Hundreds of online shops have been hacked to show fake product listings in major phishing scam

3 weeks ago

Image Credit: Shutterstock (Image credit: Gustavo Frazao / Shutterstock)

Hackers person been compromising online shops, redirecting group to copycat websites, and stealing some their information and their money there, experts person warned.

The scam, dubbed ‘Phish ‘n’ Ships’ by nan Satori Threat Intelligence squad from HUMAN which uncovered it, stole tens of millions of dollars until it was yet discovered and stopped.

Phish ‘n’ Ships astir apt started successful 2019. The crooks would break into morganatic online stores successful different ways - leveraging n-day vulnerabilities, server misconfigurations, easy-to-guess passwords, aliases successful different ways. Once they summation access, they would upload aggregate scripts which would let them to upload clone merchandise listings.

Disrupting nan campaign

The listings would travel pinch SEO-friendly metadata, to make judge they are easy to find done hunt engines. The clone products, usually for hard-to-find items specified arsenic nan Nintendo powerfulness mitt oven mitt, would lead nan victims distant from nan morganatic stores, and done a bid of redirects, which extremity connected a copycat website imitating nan original, morganatic store.

There, nan victims spell done a checkout process, giving distant not conscionable delicate information, but besides money, to nan attackers.

Satori says that “thousands” of morganatic websites were compromised this way, and “hundreds of thousands” of group victimized. The damages are being counted successful tens of millions of dollars.

To make matters worse, nan crooks were withdrawing nan money pinch nary problem, for years. However, Satori’s researchers managed to notify almost each of nan victimized websites, and pinch nan thief of Google, removed each malicious listings from hunt motor results.

Sign up to nan TechRadar Pro newsletter to get each nan apical news, opinion, features and guidance your business needs to succeed!

Finally, nan costs processors who were facilitating nan cashouts were besides notified, and nan accounts were banned.

While this intends nan run is disrupted, nan researchers judge it’s not wholly destroyed. Since nary arrests were made, they judge it is only a matter of clip earlier nan crooks commencement rebuilding nan web each complete again. As we attack nan vacation season, it is basal consumers stay vigilant and only shop connected reputable websites.

Via BleepingComputer

More from TechRadar Pro

How ecommerce retailers tin guarantee user information successful 2024
Here's a database of nan best firewalls today
These are nan best endpoint protection tools correct now

Sead is simply a seasoned freelance journalist based successful Sarajevo, Bosnia and Herzegovina. He writes astir IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, information breaches, laws and regulations). In his career, spanning much than a decade, he’s written for galore media outlets, including Al Jazeera Balkans. He’s besides held respective modules connected contented penning for Represent Communications.

Source Technology