The Atlanta Hawks merchandise website was found to be infected with malware designed to skim customer’s credit card, name, and address. The breach was found by researchers on April 20th, 2019 by researchers. A Hawks spokesperson stated, “We take these threats seriously and are investigating,” and that the malware is no longer active on the site. This malware was designed to steal the data as the customer was entering the information. Once the information was submitted, then the data was encrypted by the site and was no longer vulnerable. The Atlanta Hawks website averages about 7 million visits per year and according to researchers, it is unclear as to how many customers were affected. This type of malware is another example of a skimming scam that’s gained popularity over the last few years. Recently, companies such as NewEgg, Ticketmaster UK, and British Airways have been the victims of similar attacks. Several hacking groups are said to be responsible. The amount of attacks seems to be going down, but the scale of attacks is increasing. Hacking groups seem to be shifting from compromising small websites and attacking larger targets in an attempt to get a bigger payday.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is