P&G Online Beauty Store Hacked to Steal Payment Info
Hackers in May planted an e-skimmer on Procter & Gamble’s site First Aid Beauty and it was still stealing payment card data today. This particular MageCart script selects its victims from the US.
Deepak Patel, security evangelist at PerimeterX, provided the following comments:
“Magecart attacks are happening at an alarming pace. British Airways, Delta Airlines, Ticketmaster, Newegg, customers of the Volusion e-commerce platform, hotel booking sites in Spain and France, Garmin and now a P&G property – the list is long and will continue to grow. It begs the question: What makes Magecart attacks so unique?
“Magecart attacks exploit the website supply chain, including vendors who provide functionalities like product reviews, analytics and inventory management. These third-party vendors often lack adequate security controls to prevent code injection. Also, the scripts loaded from third-party sites execute directly on the user’s browser and communicate with third-party servers without traversing any infrastructure managed by website owners. This visibility gap on the client side, coupled with the weak security controls of third-parties, allows Magecart attackers to continue their skimming attacks undetected.