Enterprise Systems

An Avaya Diamond Partner serving Houston, Baton Rouge, Charlotte and Toronto

  • About
    • Leadership
    • Partnerships
    • Avaya, Mitel, Shoretel, Aruba Networks Houston | Baton Rouge | Charlotte
    • Philanthropy
    • Locations
  • Verticals
    • Finance
    • Medical
    • State and Local Government
    • Education
    • Hospitality
    • Transportation
    • Technology
    • Pharmaceutical
    • Media
    • Manufacturing
    • Insurance
  • Solutions
    • Cloud
      • Cloud UC – ShadowVoice
      • Private Cloud Option
      • Enterprise Systems’ ShadowVoice SIP Trunking
    • Unified Communications and Collaboration
      • Conferencing
      • Messaging and Presence
      • Mobility and BYOD
      • Telephony
      • Mobile Data Automation
    • Contact Center
    • Data Center
      • Disaster Recovery / Business Continuity
      • Servers
      • Storage
      • Virtualization
      • Core and Top-of-Rack
    • Enterprise Applications and Software
      • Business Software Development Services
      • Software Visualization
    • Enterprise Networking
      • Real Time Location Systems
      • Routing and Switching
      • Wireless
      • Distributed Antenna Systems
    • Internet of Things (IoT)
    • Security
      • Network Security
      • Physical Security
      • Video Management Systems and Video Analytics
      • Security Cameras
      • Access Control Solutions
      • Intrusion Detection
  • Services
    • Network Cabling Services | Data Cabling
    • Carrier Services
    • Managed Services
    • Professional Services
  • Partners
  • News
    • Press Releases
    • Testimonials
    • Blog
    • Video
  • Contact
    • Contact Us
    • Feedback Survey
    • Quote Request
    • Service Request
  • Texas DIR Contracts
  • Cooperatives
    • Avaya (Reseller) DIR-TSO-2654
    • TIPS

March 28, 2019 By Rodney Hyde

The Week in Breach: 03/19/19 – 03/26/19

United States – MyPillow and Amerisleep
https://www.bleepingcomputer.com/news/security/payment-card-thieves-slip-into-mypillow-and-amerisleep-bedding-sites/

Exploit: Magecart attack on website checkout pages.
MyPillow and Amerisleep: Pillow and mattress companies in the US.

Risk to Small Business: 1.666 = Severe: After being targeted as early as 2017, both online retailers faced card skimming attacks. In this scheme, hackers will insert malicious code into website checkout pages and covertly swipe customer payment information. Although MyPillow discovered the first compromise almost immediately, it argued that the second attack did not result in the loss of information. On the other hand, Amerisleep has not responded to comments. Depending on what further investigations reveal, it is possible that the sleep companies will face hefty fines for their delay in responding as well as scrutiny from online shoppers.

Individual Risk: 2.428 = Severe As you can imagine, any information provided on a checkout page is up for grabs during a Magecart attack. This could include first and last names, addresses, credit card numbers, and more.

Customers Impacted: To be determined.
How it Could Affect Your Customers’ Business: Most recent Magecart attacks such as those on British Airways and Newegg were targeted towards larger firms, but now hacking groups are shifting their focus to small businesses. Skimming schemes are especially dangerous since they can be hard to trace, yet able to extract valuable customer information. Once cybercriminals can get their hands on such data, they will move to the Dark Web to make profits or conduct payment fraud.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on Facebook (Opens in new window)

Related

Filed Under: Blog

Customer Login | Employee Login
877-343-1212
Leadership
Technology Partners
Partnerships
Philanthropy
Locations

ISNetwork Member Contractor

Houston Area Safety Council logo
View Enterprise Systems Corporation profile on Ariba Discovery

TIPS - Our Partner

LinkedIn
10910 West Sam Houston Pkwy North
Suite 100
Houston, TX 77064
(877) 343-1212

Copyright © 2023 · Enterprise Systems Corporation