American Cancer Society Website Infected With Magecart Skimmer
As many rush to make charitable donations before the end of the year hoping to claim deductions on federal taxes, cyber-criminals are positioned to profit. The American Cancer Society (ACS) has become the latest victim of the data skimming group known as Magecart. Researcher Willem de Groot identified the malicious code, which was embedded into the ACS store website. This code is used by Magecart to scrape payment card information, which is then sent to a third-party server operated by the attacker and is often subsequently sold on the dark web. Willem stated that unfortunately, this is a common occurrence, citing between 30 to 200 identified skimming cases daily, such as recent compromises of the P&G and Sixth June websites. As of October 25, 2019, the malicious code has been removed from the ACS store website. The NJCCIC recommends ACS website patrons to monitor their banking statements for fraudulent activity. Website administrators are encouraged to monitor webpages for script integrity and deploy data-centric security. Additional details can be found in the GovInfo Security article and the Sanguine Security Labs article.