Magecart Attackers Abuse Google Ad Tool to Steal Data

Attackers are smuggling payment card-skimming malicious code into checkout pages on Magento-based e-commerce sites by abusing the Google Tag Manager ad tool.

Feb. 11, 2025 Signup

Daily Edition

Today’s news and insights for cybersecurity professionals

- Today's News and Features -

TOP NEWS

Magecart Attackers Abuse Google Ad Tool to Steal Data‎‎ Attackers are smuggling payment card-skimming malicious code into checkout pages on Magento-based e-commerce sites by abusing the Google Tag Manager ad tool.‎‎ Keep Reading →

120K Victims Compromised in Memorial Hospital Ransomware Attack‎‎ After claiming responsibility for the ransomware attack in 2024, the "Embargo" ransomware group posted 1.15 terabytes of stolen data to its public Tor site. ‎ ‎

XE Group Shifts From Card Skimming to Supply Chain Attacks‎‎ The likely Vietnam-based threat actor has been using two zero-days in VeraCore's warehouse management software in some of its latest cyberattacks. ‎ ‎

Newspaper Giant Lee Enterprises Reels From Cyberattack‎‎ The newspaper company expects the investigation to take some time, but said in an SEC filing that it has not yet identified any material impact. ‎ ‎

THE EDGE

Ransomware Groups Made Less Money in 2024‎ Improvements in cyber hygiene and resiliency made it possible for victim organizations to skip paying ransom amounts in 2024. ‎

DR TECHNOLOGY

Microsoft Sets End Date for Defender VPN‎ Though Windows, iOS, and macOS users won't need to make any changes, Android users are advised to remove their Defender VPN profiles. ‎

SPONSORED ARTICLE

Why Exposure Management Must Be a C-Suite Priority‎ Traditional vulnerability management is outdated for modern cyber threats. C-suites must adopt exposure management to align security with business priorities. ‎

Read More →

- Commentary -

Opinions from thought leaders around the cybersecurity industry

Analyst Burnout Is an Advanced Persistent Threat‎‎ For too long, we've treated our analysts as mere cogs in a machine, expecting them to conform to the limitations of our tools and processes. It's time to revolutionize security operations.‎‎

Behavioral Analytics in Cybersecurity: Who Benefits Most?‎‎ As the cost of data breaches continues to climb, the role of user and entity behavioral analytics (UEBA) has never been more important.‎‎

More Commentary →

- Upcoming Events -

Mar 19, 2025 DR, SIEM, SOAR, and MORE: How to Determine the Right Endpoint Strategy for Your Enterprise

Mar 5, 2025 Shift Left: Integrating Security into the Software Development Lifecycle

Mar 20, 2025 [Dark Reading Virtual Event] Cybersecurity's Most Promising New and Emerging Technologies

More Webinars →

- More Resources -

WHITE PAPER Driving the Future of Work Through Enterprise-Wide SASE

WHITE PAPER Social Engineering: New Tricks, New Threats, New Defenses

WHITE PAPER The State of Asset Security: Uncovering Alarming Gaps & Unexpected Exposures

REPORT How Enterprises Assess Their Cyber-Risk

More Resources →

- Elsewhere in Cyber Today -

CYBERSECURITY DIVE

HPE Issues Breach Notifications for 2023 Midnight Blizzard Attack

DEPARTMENT OF JUSTICE

Guilty Plea in Hacking of the SEC's X Account That Caused Bitcoin Value Spike

NEW YORK STATE

Governor Hochul Issues Statewide Ban on DeepSeek Artificial Intelligence for Government Devices and Networks

- Do You Find Today’s Newsletter Helpful? -

Yes Not sure No

You received this message because you are subscribed to Dark Reading's Daily newsletter. If a friend forwarded you this message, sign up here to get it in your inbox. Thoughts about this newsletter? Give us feedback.

Advertise With Us | Privacy Policy | Unsubscribe Copyright © 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. Operated by TechTarget, Inc. and its subsidiaries, 275 Grove Street, Newton, Massachusetts, 02466 US