Cyber criminals are busy at work, especially during the end-of-year online shopping events, the security expert firm Symantec proves by detecting a major increase in attacks on online retailers and blocking almost a quarter of a million instances of attempted formjacking in the past three months.
What is formjacking?
How does formjacking work?
How do you protect against formjacking?
Victims may not realize they are victims of formjacking as their websites generally continue to operate as normal. Attackers are sophisticated nowadays and take steps to avoid detection. However, website owners should also be aware of the dangers of software supply chain attacks, as these have been used as the infection vector in some of these formjacking attacks.
The fact is that attacks can be difficult to guard against, but there are some steps that website owners can take. Symantec recommends to:
- Test new updates, even seemingly legitimate ones, in small test environments or sandboxes first, to detect any suspicious behavior.
- Use behavior monitoring to identify any unwanted patterns fast so a suspicious application can be blocked before any damage can be done.