MageCart Kills Competition By Rendering The Rival’s Marketable Data Worthless


Seems like the cyber-cons don’t completely rely upon their own tight-fist web-crime methods and hence have resorted to incapacitating their rivals in terms of destroying the payment data drawn out via the online sites. As a result the victimized participant faces a humongous loss and a seriously jeopardized reputation.

The par takers of this feud have clearly started thinking of this as a game and they tend to clash up on the actual victim’s server.

Reportedly, the parties that are a part of this whimsical rivalry strife belong to the “MageCart.” Groups.

One of the independent security researchers, belonging to a well-established organization, had published a couple of reports instating the codes that were used by “MageCart” group 9 in the attempt of destroying their rivals’ manoeuvres.

The stores used as battlefield in the strife were, “B.Liv” online (a cosmetics shop) and “Umbro Brazil.”

The code which was used by group 9 was obfuscated and could easily sense the incidence of other web-skimming tools on the server.

To kick the data-poisoning system into effect, the domain names used by the rival to eliminate the payment data are checked by the skimming code. The moment it gets sensed the very moment a number that falls between 0-9 is substituted at the last in the card number.

The moment a rival skimmer is sensed, the card data gets seized immediately and the last number gets changed, rendering the data futile.

Such a minor alteration in the card’s number is more than enough to render the data useless.

The rival would then attempt to sell the card with no useful material in it on the dark web only to hamper his reputation vastly. The black market is all about status and once that is smashed into pieces by unsatisfied customers, the seller would stand nowhere.

This strategic approach of the cyber-cons towards their competition has been spotted previously as well, in case of crypto-mining.

“Magecart” specifically exploits the third-party scripts loads during checkout. The website owners should eliminate pages that exhibit payment details or transaction data to keep themselves and their sites safe.

Leave a Reply