At least 5,600 shoppers of the Sportswear brand, FILA, could have had their personal data compromised on the UK website, as a result of a rogue script. The site may have been infected since November 2018 and becomes the most recent breach in a string of similar attacks on other brands, including Ticketmaster, British Airways, OXO and Newegg.
How Did the Attack Happen?
What is Formjacking?
Dmitry Volkov, CTO at Group-IB said:
“Cybercriminals might have injected a malicious code by either exploiting a vulnerability of Magento CMS (Content Management System), used by FILA.co.uk, or simply by compromising the credentials of the website administrator using special spyware or cracking password with brute force methods,”
A Rising Trend
This is not a new technique, but has grown in popularity since August 2018, affecting a number of high-profile retailers and further illustrating the dangers of supply chain attacks. As formjacking only requires a few simple lines of code to be loaded onto a website, it could represent a significant threat to online retailers and any organization that collects, processes, stores or transmits sensitive customer details. It highlights poor due diligence by online retailers who aren’t adequately assessing their ecommerce platforms, or failing to control access to their valuable online assets.
Nicholas Palmer, vice president of international business at Group-IB said:
How to Protect Your Customers from Formjacking
Reduce the impact of a data breach and take the worry of malicious online attacks away from your organization. By taking any sensitive data associated with the organization “out of scope” and removing it from their network and environment, serves as an effective way of avoiding this form of attack. This can be done using a third-party secure payment solutions provider, such as Key IVR, who offer an industry leading secure web payments platform and ensure valuable card details are processed safely and securely. Take a look at our Secure Web Payment solutions, alternatively contact a member of our team on +44 (0) 1302 513 000 or email firstname.lastname@example.org