Magecart: Sixth June, a popular online clothing store in Europe, is one of the most recent victims in a Magecart e-skimming campaign. The website has had malicious credit card stealing scripts running on their checkout pages since October 23rd, 2019. A researcher whose Twitter handle is “@jknsCO” reported the initial skimming malware to Sixth June but did not receive a response from them. The skimmer was still up and running as of October 28th. In this case, the threat actors managed to steal the details of credit cards collected on standard checkout pages as well as input from any page it loads–including email addresses, usernames, passwords, and address details. Magecart is a term that is used by many to describe the act of card skimming but is used by multiple different groups. To read more about the attack on Sixth June visit: https://www.bleepingcomputer.com/news/security/sixth-june-fashion-site-hacked-to-steal-credit-cards/.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in