Researchers discovered that a reemerged strain of Magecart attacks had targeted food online services. Food online ordering has become the most lucrative way for hackers to deploy Magecart attacks. These attacks threaten high-end and small-scale platforms since online food services became a trend during the pandemic.
According to researchers, two distinct Magecart attacks injected e-skimmer scripts into the three targeted ordering portals. These portals are named Harbortouch, Menudrive, and InTouchPOS, which three different restaurants own.
The Magecart attack compromised more than 300 restaurants, and experts expect that these kinds of campaigns will surge drastically in the next few weeks. In addition, the threat actors stole over 50,000 payment card details from the targeted restaurants. The hackers then post these stolen troves of data for sale on the underground market and the dark web.
Restaurants that used the mentioned platforms were affected severely by the Magecart attacks.
The platforms Harbortouch and Menudrive were both targeted simultaneously by the campaign that compromised nearly a hundred restaurants that utilised the two media. However, in November last year, the researchers monitored a separate Magecart attack, resulting in the infection of more than 150 restaurants that used the InTouchPOS platform.
Researchers noted that the InTouchPOS attack overlaps some of the strategies employed by another campaign that targeted approximately 400 e-commerce websites in May a couple of years ago. In the most recent tally, more than 30 infected sites remained in last year’s attack.
In a similar attack, n open-source e-commerce platform dubbed PrestaShop was discovered by researchers to have an injection that can override the website’s existing credit card payment form.
Magecart threat campaigns are always targeting all forms of e-commerce entities. Furthermore, these attacks seem to have an exclusively designed malware for a particular website to attack.
The campaign against online purchasing platforms has dramatically increased over the last few years, which implies that the threat actors are seeing a profitable potential for online services. Therefore, online sellers, especially food providers, must prioritise employing cybersecurity solutions for their online platforms to mitigate or obstruct any cyberattack attempt.
