Technical Breakdown of Magecart-The Digital Bank Robbery | Lavakumar Kuppan | Nullcon Webinars 2021

preview_player
Показать описание
Abstract:
--------------------
Over the past few years, attackers have stolen millions of credit card details from eCommerce and other websites that have an integrated payment capability.

All of these attacks captured and stole the credit card details through JavaScript on the client-side and so went undetected, in some cases, for up to a year.

In this session, we will break down the technical details of this attack so you can understand it and protect your assets against it.

About Speaker:
---------------------------
Lavakumar Kuppan is the founder of Ironwasp Security, a company focused on providing continuous JavaScript security monitoring for sensitive web applications.

He has been publishing his research on JavaScript security from the time of Google gears (the precursor to HTML5), his research on the security of HTML5 was presented at Blackhat and was covered in Forbes.

In addition to several tools on the offensive side and vulnerability scanning side, he currently builds Sboxr, a runtime taint analysis-based DOM XSS scanner.

#Magecart #digitalbanktheft #vulnerability #ecommerce
-----------------------------------------------------------------------------------------------
  1. nullcon
  2. magecart
  3. ecommerce
  4. payment gateway
  5. digital bank theft
  6. cyber fraud
Рекомендации по теме
Technical Breakdown of 1:02:47

Technical Breakdown of Magecart-The Digital Bank Robbery | Lavakumar Kuppan | Nullcon Webinars 2021

The Unseen Threat: 0:10:53

The Unseen Threat: How Magecart is Stealing Your Information | A Cyberstory

The Bad Guys 0:37:13

The Bad Guys Win – Analysis of 10,000 Magecart Vulnerabilities

Web Skimming Attacks 0:01:24

Web Skimming Attacks – Digital Hacking Techniques for Payment Card

The Novel MageCart 0:05:22

The Novel MageCart Attack

Magecart 2020 The 0:34:02

Magecart 2020 The New Face of XSS Ameet Naik & Ido Safruti

Inside Magecart: the 0:24:53

Inside Magecart: the history behind the covert card-skimming assault on the e-commerce industry

Magecart Hackers Perfect 0:05:50

Magecart Hackers Perfect Fake Checkout Pages

Eliminate Magecart Risk, 0:49:51

Eliminate Magecart Risk, Ensure Digital Privacy and Accelerate Website Security

Protecting Against Magecart 0:10:06

Protecting Against Magecart Attacks with FortiCWP

JavaScript Skimmers, Formjacking 0:51:17

JavaScript Skimmers, Formjacking and Magecart: All You Need to Know

Magecart Malware keeps 0:04:59

Magecart Malware keeps skimming your payment information

Detecting and Preventing 0:56:16

Detecting and Preventing MageCart Attacks

Magecart Five Widens 0:17:36

Magecart Five Widens Attack Vectors, Targeting of Airbus Suppliers, & Tortoiseshell Developments

Inside Magecart: Their 0:44:04

Inside Magecart: Their Web Skimming Tactics Revealed - Terry Bishop

RiskIQ exposes MageCart 0:02:59

RiskIQ exposes MageCart group that has combined data exfiltration techniques

Magecart - The 0:43:30

Magecart - The Rising Threat to e-commerce Websites - Shrutirupa Banerjiee

AWS re:Inforce 2023 0:14:55

AWS re:Inforce 2023 - Protect your apps from digital attacks w/ a modern defense strategy (PRT220-S)

Magecart style attacks 0:26:58

Magecart style attacks and the dangers of trusting 3rd party JavaScript

How to perform 0:45:46

How to perform Hands-on Advanced Magecart Investigation - Or Schwartz from RiskIQ

CSIS Webinar | 0:29:19

CSIS Webinar | The Magecart Phenomenon with Stefan Tanase

Magecart payment card 0:29:02

Magecart payment card theft analysis — Research Saturday

Protecting your web-application 0:35:19

Protecting your web-application from Magecart

Magento Malware in 0:06:12

Magento Malware in the Wild - Billing Information Leak | Magecart