Magecart Strikes Again ... This Time Forbes Magazine

Giulio Saggin
Giulio Saggin
Tuesday 28 November 2023

The Forbes magazine subscription website has been attacked by the credit-card-skimming malware, Magecart. Hackers installed malicious JavaScript on, targeting credit cards of new users signing up for the paper edition. The script allowed details, such as card numbers and expiration dates, as well as CVV/CVC verification codes and customers' details - names, addresses, phone numbers and email addresses - to be sent to another web server used by the hackers. Despite the attack, a Forbes spokesperson told The Register, "it doesn’t appear the crooks got anyone's credit card information, though an investigation is ongoing." The Forbes attack may have occurred because of its association with Picreel, a web marketing software supplier. The records of Picreel customers, of which Forbes is one, were obtained by hackers, who were then able to install Magecart on Magecart isn't new. It's been around since 2015 and has caused many disruptions for online traders. Among them, British banks were forced to replace 40,000 cards after Ticketmaster was attacked by Magecart, personal and payment information of around 380,000 British Airways customers were stolen, and the online shop of the Atlanta Hawks NBA basketball team was infiltrated. RiskIQ's Yonathan Klijnsma, quoted in Bleeping Computer, said: "For every Magecart attack that makes headlines, we detect thousands more that we don’t disclose. Credit card-skimming groups are gaining efficiency, so it takes less time than ever for consumers to see their data stolen, seemingly out of nowhere." Magecart shows no signs of slowing and nearly 2,500 websites - infected with payment card skimming scripts - were discovered during early April.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.


SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203