• Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Transform
      • SOC Consultancy
      •     SOC Maturity Assessment
      •     SOC Model Evaluation
      •     SOC Gap Analysis
      •     SIEM Gap Analysis
      •     SIEM Optimization
      •     SOC Content Pack
    • Train
      • Security Awareness and Training
      • Tabletop Exercise
      • Simulated Cyber Attack Exercises
    • Respond
      • Incident Response
      • Incident Analysis
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
Rewterz Threat Alert – A New Class of Bugs Affecting Windows and its Drivers
March 21, 2019
Rewterz Threat Advisory – Oracle Solaris Multiple Third Party Components Multiple Vulnerabilities
March 22, 2019

Rewterz Threat Alert – Two new Magecart Data Breaches – IoCs

March 21, 2019

Severity

Medium

Analysis Summary

Two Magecart-related breaches have been observed involving credit card fraud. One of these has been resolved but was never disclosed while the other is still in process.

In both cases, the potential victims of credit card fraud, the consumers, have not been informed. 

Impact

Credit card fraud

Indicators of Compromise

IP(s) / Hostname(s) secure[.]livechatinc[.]org
www[.]cdnmage[.]com
www[.]js-cloud[.]com
www[.]magescripts[.]pw
URLs cdnassels[.]com
cdnmage[.]com
cmytuok[.]top
configsysrc[.]info
hxxp[:]//magescripts[.]pw/ext-payment[.]js
hxxps[:]//mypiltow[.]com/js/mage/bundle[.]js
hxxps[:]//secure[.]livechatinc[.]org/license/9655505/v2/get_dynamic_config[.]js
js-cloud[.]com
magejavascripts[.]com
magescripts[.]pw
magesecuritys[.]com
mcloudjs[.]com
mypiltow[.]com

Remediation

Block the threat indicators at their respective controls..

  • Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Respond
      • Incident Response
      • Incident Analysis
  • Transform
    • SOC Consultancy
    •     SOC Maturity Assessment
    •     SOC Model Evaluation
    •     SOC Gap Analysis
    •     SIEM Gap Analysis
    •     SIEM Optimization
    •     SOC Content Pack
  • Train
    • Security Awareness and Training
    • Tabletop Exercise
    • Simulated Cyber Attack Exercises
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
COPYRIGHT © REWTERZ. ALL RIGHTS RESERVED.