NRSC Website Had Complex Malware Installed, Credit Card Info Stolen
According to the National Republican Senatorial Committee, its storefront contained malware that stole credit card information that was used since March 2016.
The same criminal group has targeted the NRSC as well thousands of other e-commerce sites – perhaps nearly 6,000 sites.
Williem de Groot, a Dutch security researcher, first broke the news about the malware. He said the attackers was able to install malware on sites using the sites’ weak passwords and other vulnerabilities.
de Groot said roughly 630 stores have updated their securities and removed the malware – that translates to one in ten e-commerce sites.
While the exact number of credit cards stolen during the six months is not known, the 30-day estimate suggests that 330,000 people visited the store.
de Groot said the malware can go undetected – is persistent – for a long time. He said 754 stores were skimmed since 2015. de Groot said to the untrained eye, the malware looks like a webpage code. Since the wiretap code runs on the page, it can run on the secure HTTPS pages, which is why no one suspects a thing.