Today’s story starts much the same as many others on this blog: A new client came to us reporting that credit card details were being compromised from their checkout page. The website owner had even been contacted by a major credit card company who had identified their domain as a “common point point of purchase” of reportedly compromised cards. Thus begins our investigation into tracking down the culprit.
Magecart infections in OpenCart
Magecart is the nickname given to web-based malware that harvests credit card data from compromised ecommerce websites.