The department store Macy s is warning that web skimmer malware was discovered on Macys.com collecting customers payment card information. The attack has been linked to Magecart, a notorious umbrella group made up of various cybercriminal affiliates that is known for injecting payment card skimmers into ecommerce websites. The company is offering victims a free year of the Experian IdentityWorks credit monitoring service. Security experts urge the importance of established internet-facing infrastructure is as well as strong and robust policies to restrict third-party access to sensitive information.
Source: https://threatpost.com/macys-data-breach-linked-to-magecart/150393/