Australian e-stores infected with card stealing malware


Staff member
E-commerce stores worldwide have been infected with payment skimming malicious software (malware) – called – which can intercept customers' payment information and send it to cyber criminals.

The malware infects websites that use the Magento shopping cart software by successfully guessing the password used by the website’s Magento admin panel.

An infected website will then record all keystrokes from customers on the website and send them back to the cyber criminals, capturing things such as usernames, passwords, credit card information, and personal details.

Reports confirm that the affected e-stores include a number of Australian sites.
Does it affect me?

If you are an online trader or online shopper and you use the Magento shopping cart software, you could potentially be affected.
How do I stay safe?

These sorts of malware attacks can stem from business owners not keeping their websites and operating systems up-to-date, as well as poor password security.

If you are an online trader, you should:

  • Follow Magento’s advice for how to detect malware running on their installations.
  • Analyse backend logs and look for any unusual administrator logins to identify potential unauthorised access to your website.
  • Ensure that you and your employees have long, strong passwords on all your operating systems, including Magento shopping cart software.
  • Regularly update your organisation’s computers and applications, to protect your business and customers from being hacked.
If you are an online shopper, you should:

  • Monitor your accounts for any unauthorised transactions.
More information

If you’re an online shopper and believe a scammer has credit card or account details, contact your bank or financial institution immediately.

If you’re a business and your website has been infected, you should follow your incident response plan.

If you are concerned that your personal information has been compromised and misused, you can contact Australia's national identity and cyber support service, IDCare, or use their free Cyber First Aid Kit.

If you have been a victim of a cybercrime such as fraud, report it to the Australian Cybercrime Online Reporting Network (ACORN).