Newegg Online Payment System Compromised by Cybercriminals

  • Newegg is the latest in line to face a security breach in its online payment system.
  • The store’s payments page was used to harvest credit card details for over a month by attackers.
  • Attackers infected one of the servers with malware, and it has been removed.

Popular e-commerce platform Newegg has suffered a malware attack which may have compromised credit card information belonging to a large number of users. A credit card skimming malware was injected into Newegg’s payment page and harvested credit card details for over a month. Newegg is one of the most popular websites for computer hardware and accessories and caters to a large number of users from across the globe. With around 50 million visits a month, the extent of the credit card data breach could be one of the largest ever seen.

The computer hardware store made an official announcement via Twitter. Newegg is currently investigating to determine how much info was obtained by attackers. Customers who have been potentially impacted are being sent emails through the e-commerce website. Newegg has requested all users to check their emails to find out if they may have been affected.

According to RiskIQ and Volexity, who identified the breach, the attack against Newegg was conducted from August 14 to September 18. Cybercriminals injected a malicious JavaScript Code into the store’s payments page, which is responsible for collecting credit card data of users for processing purchases. The malware exploited both the mobile and desktop versions of the shopping website. All of the data has been transferred to a private server which is no longer active.

The attackers allegedly used the Magecart exploit, which was also used recently to perform a similar credit card theft that has affected approximately 380,000 British Airways customers. The malware contains only 15 lines of code, and it has already been removed to secure the website. Users who made purchases on Newegg between August 14 and September 18 need to be on high alert and keep an eye out for any suspicious transactions in their credit card statements.

What do you think about the malware attack on Newegg? Let us know in the comments below. Also, to get instant tech updates, follow TechNadu’s Facebook page, and Twitter handle. 

Latest
ICC World Test Championship Final 2023 Live Stream: How to Watch Test Cricket Online from Anywhere 
The pinnacle of test cricket is upon us, and the excitement is high ahead of what promises to be a thrilling contest...
How to Watch Avatar: The Way of Water Online from Anywhere
This year, Avatar: The Way Of Water became the third-highest-grossing picture of all time, collecting more than 2 billion dollars since its...
How to Watch It’s Always Sunny in Philadelphia Season 16 Online from Anywhere
It’s Always Sunny in Philadelphia Season 16 is here, and you will find below the premiere date, cast, plot, episode release schedule,...
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: Chrome, Edge, Firefox, Safari