laptop with GTM
Threat Intelligence

Google Tag Manager Skimmer Steals Credit Card Information From Magento Sites

Posted on February 12, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary A recent investigation by Sucuri uncovered a sophisticated credit card skimmer on a Magento-based eCommerce website, leveraging Google Tag Manager (GTM) to inject malicious JavaScript and steal payment details. The malware was hidden within the cms_block.content database table, allowing attackers to discreetly intercept checkout page transactions. Further analysis by Sucuri revealed a backdoor in the…

Read More
RH-ISAC Summit
Press Release

RH-ISAC Announces Agenda for the 2025 Cyber Intelligence Summit

Posted on February 12, 2025

By Annie Chambliss, RH-ISAC Director of Marketing and Communications

VIENNA, VA (February 12, 2025) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) has released the full agenda for its upcoming annual Cyber Intelligence Summit, the premier event for cybersecurity professionals working in retail, hospitality, and other consumer-facing industries. Scheduled to take place on 7-9 April in St. Louis, Missouri, the conference…

Read More
Rachel Tobac
Press Release

Cybersecurity Expert Rachel Tobac to Keynote 2025 RH-ISAC Cyber Intelligence Summit

Posted on January 21, 2025

By Annie Chambliss, RH-ISAC Director of Marketing and Communications

VIENNA, VA (January 21, 2025) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) is thrilled to announce that Rachel Tobac, renowned cybersecurity expert and CEO of SocialProof Security , will deliver the keynote address at the 2025 RH-ISAC Cyber Intelligence Summit, taking place 7–9 April, 2025, in St. Louis, Missouri. In her…

Read More
Fortinet
Threat Intelligence

Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls Utilizing Zero-Day

Posted on January 15, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary In early December 2024, Arctic Wolf Labs identified a sophisticated cyberattack campaign targeting Fortinet FortiGate firewall devices. Unidentified threat actors exploited a suspected zero-day vulnerability to gain unauthorized access to the devices’ management interfaces, allowing them to alter firewall configurations and extract credentials using DCSync. Community Impact A successful compromise of FortiGate firewalls in this…

Read More
Threat Intelligence

Sophisticated Card Skimmer Targets WordPress Checkout Pages via Database Injection

Posted on January 13, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary A sophisticated credit card skimmer malware has been discovered targeting WordPress websites, stealthily injecting malicious JavaScript into the site’s database to steal sensitive payment information. This skimmer, designated malware.magento_shoplift.273 by Securi, specifically activates on checkout pages, either by hijacking legitimate payment fields or injecting fake credit card forms. The stolen data, including credit card…

Read More