Protect Your Website

Data Breach Monitoring

Attacks using third-party and client-side javascript can skim customer details undetected for days, weeks, and even months.

Am I At Risk? Magecart Monitor

Avoiding Data Breach penalties

Thanks to GDPR the negative impact of a significant data breach is now even greater.

For example, the recent British Airways Magecart data breach resulted in a fine from the ICO of £183 million.

British Airways were hacked for around 16 days with 380,000 customers affected. Other high-profile Magecart hacks in recent months include:

  • Newegg, compromised for over 1 month
  • Ticketmaster, hacked for 9 months and with 40,000 customers impacted
  • Discount Mugs‘ website breached customer data for over 4 months

The financial damage of a Magecart data breach attack could be significant. According to GDPR, fines could be $20m or 4% of turnover.

How do Magecart Data Breaches occur?

Magecart attacks are on the rise, with thousands of sites hit in recent months. The attacks exploit third-party javascript to skim customer details. These third parties are commonly used across the web for key functionality, such as:

  • Live chat or customer support
  • Traffic analytics
  • Advertising
  • Payment processing
  • Review or comment add-ons

Third party files might appear to be completely harmless, but as soon as they are loaded on your website they have the capability to capture and send data.

Many data breaches continue for weeks or months before detection. This delay allows the hackers – Magecart – to gather potentially thousands of customers’ details.

Want to know more?

How to Defend Against Data Breaches
~ From the blog

Whilst your customers browse and purchase on your website, scripts are loaded from third parties.

If a third party is compromised, hackers then have a way to write scripts affecting your website.

Hackers can then intercept customer card details without you even noticing.

Magecart: Are you at risk?

Discover if your business is vulnerable to this type of attack.

Am I At Risk?

Detecting data breaches

Data breaches are extremely difficult to detect. Data skimming can last for months, with client-side javascript compromised and sending your users’ personal data. Once discovered, the fallout from a hack can be huge – with reputational damage and enormous fines.

The key to detecting data breaches is identifying when data is sent from your website to another location.

RapidSpike monitors where your website sends data.
If we see a new unknown destination, we alert you.

Simple, effective, foolproof.

Magecart Monitor »

  • Insider: Yorkshire's Most Exciting Companies
  • Northern Digital Awards 2019 Shortlist
  • KPMG Best British Tech Startup 2019: Northern Finalist
  • Prolific North Tech 100: Top 30 Companies to Watch
  • National Cyber Security Centre: Cyber Accelerator Alumni