Info-Stealing Malware Pounces on Puma Australia's Webstore

lazybones1987 on 30/04/2019 - 22:37

Hi,
I came across this today: https://www.itnews.com.au/news/info-stealing-malware-pounces…

Puma deals get posted here quite often. I have never purchased anything from their online store before ( and probably never will)

"Willem de Groot of security vendor Sanguine Security confirmed to iTnews that despite notifiying Puma's Australian online e-commerce operation, the site continues to be infected by Magecart malware."

You might want to check your credit card statements like a hawk if you have purchased from Puma.

Fashion & Apparel

Related Stores

PUMA
PUMA

Comments

  • fishball on 30/04/2019 - 22:41

    I actually got my AMEX skimmed through a Puma deal posted on here. Lucky I check my statements and AMEX are very responsive when it comes to this stuff.

    I had narrowed it down to 2 merchants, this just confirmed it was Puma.

  • Clear on 30/04/2019 - 23:35
    -5

    This is why I've always insisted that people should have a proper antivirus suite installed to help prevent these threats. Everyone in AV deals love to say how Windows Defender is perfect and that they don't visit dodgy sites when really you an have no idea if a website is compromised or not.

    I think the worst case of malware I saw trending in 2018 was the attack on Commbank's BPAY system. Once the payload was delivered via email (even when later removed by AV) it would do a simple browser injection and in the background change your saved BPAY contacts. You would think you're paying the right person while in reality (viewable in page source code) you were paying a completely different person.

    Fortunately that scam was dismantled by the AFP and other banks now require software to be installed to access your banking.

    • lazybones1987 on 01/05/2019 - 00:23
      +5

      I don't think any AV would have helped here given that the malware was on Puma's servers.

      • Clear on 01/05/2019 - 00:26

        In this specific instance probably not but when it's the website itself with malicious code then it's usually a yes.

        • Pikaloo on 01/05/2019 - 06:35

          Nope, AV on the server would've done nothing. It was a line of code pointing to a website which has the rest of the code in an obfuscated file. AV doesn't read code and tell you if it's safe or not. SAST and DAST is used to read code and tell you if it's safe or not.

          • Clear on 01/05/2019 - 07:16

            @Pikaloo: When I said AV suite I was referring to all kinds of security products… much easier than listing them all though people are super pedantic about it here.

            Definitely would have been possible for Puma to detect and stop if they had the right security in place. For other kind of threats like browser injections, also easy for users to try and prevent.

    • garetz on 01/05/2019 - 01:48
      -1

      An antivirus wouldnt have done a thing, you would of needed a scriptsafe browser addon.

      • Clear on 01/05/2019 - 07:10
        -2

        Which are included in a decent antivirus suite.

  • Pikaloo on 01/05/2019 - 05:50

    i used paypal.

Login or Join to leave a comment
Login Join