Unusual, Enigmatic Credit Card Transactions Surge Worldwide on Shopify Platform
Small, unauthorized charges from Shopify-charge.com have been appearing on credit card statements worldwide, causing concern among consumers and businesses using the e-commerce platform. The charges, which often amount to USD0 or USD1, have been reported since July 21st and involve physical and virtual credit cards of various types, including Discover, Monzo, Capital One, and Visa cards.
Recent reports suggest that these charges could indicate a broader cyber threat. The hacker group responsible for the unauthorized transactions is called "Magecart." The charges appear to originate from a legitimate Shopify site, leading to speculation about a possible third-party data breach at a Shopify vendor.
Shopify has stated publicly that the charges are unrelated to their recent vendor data breach. However, the company emphasizes the importance of robust security practices for businesses using e-commerce platforms like Shopify. Keeping software updated with the latest security patches is crucial for businesses to protect against cyber threats.
Many affected users claim never to have used their cards on Shopify, and some report that charges were also attempted against older deactivated cards. Tiquet, a cybersecurity expert, advises consumers to regularly monitor their credit card statements for unauthorized transactions and to change the passwords for their Shopify account and any other retail sites that may be powered by Shopify.
To provide added protection for consumers, Tiquet suggests utilizing credit monitoring services and dark web monitoring. For businesses, a multi-phase approach to cybersecurity is recommended, including regular employee training and implementing password and privileged access management solutions to secure sensitive systems.
Attackers may use such inconspicuous transactions to test the validity of compromised card numbers, making it essential for both consumers and businesses to stay vigilant against cyber threats. As the number of impacted people continues to increase, it is crucial to prioritize cybersecurity measures to protect against potential attacks.
Read also:
- Mural at blast site in CDMX commemorates Alicia Matías, sacrificing life for granddaughter's safety
- Microsoft's Patch Tuesday essential fixes: 12 critical vulnerabilities alongside a Remote Code Execution flaw in SharePoint
- Russia intends to manufacture approximately 79,000 Shahed drones by the year 2025, according to Ukraine's intelligence.
- Dynamic interplay of power and communication channels set the course for the network's new era
