Skip to main content
-
When Your Trusted Vendor Becomes the Threat - July 15, 2025
-
New Magecart Attack: Silent Skimming and WebSockets - July 8, 2025
-
Ongoing Magecart variant hides malicious code in broken image tags - July 1, 2025
-
Relying on external payment providers is not enough; hundreds of such sites are under attack – June 24, 2025
-
Rare and dangerous Magecart attack: GTM code itself compromised – June 17, 2025
-
Double-encoded Magecart attack hides behind legitimate domain – June 10, 2025
-
Magecart returns: threat actors rebrand GTM-hiding attacks – June 3, 2025
-
Sophisticated WebSocket attack leveraging broken images and self-removing JavaScript – May 27, 2025
-
Attackers strike unprotected sites – because cleanup alone is not enough – May 20, 2025
-
Attackers mask varying malicious scripts behind rotating trusted domains – May 13, 2025
-
Next level attack: Several GTMs working in sync, CSS and DOM exploited - May 6, 2025
-
Double-entry attack with convincing fake forms triggered from non-sensitive webpages - April 29, 2025
-
Multiple websites breached throuh compromised hosting service - April 22, 2025
-
Localized double-entry attack affects 100's of websites via dozens of malicious domains - April 15, 2024
-
Trending: Attacks via nested GTM scripts - April 8, 2025
-
Attacker hides behind "harmless" thank you page & cookies - April 1, 2025
-
3rd party service IDOSTREAM[.]COM comprimised - March 25, 2025
-
Live attack hiding behind Google apps - March 18, 2025
-
Magecart as a national security issue - March 11, 2025
-
New threat: Abuse of Stripe's deprecated API - March 4, 2025