IBM X-Force advisory: Organizations that fail to vet third-party suppliers properly are vulnerable to a threat that steals credit card data over long periods of time. The threat alert outlines details about a recent breach against Ticketmaster that affected several of its third party websites. The group, dubbed Magecart, has been running the campaign since at least December 2016. A May 2018 study from Kaspersky Lab found that incidents affecting third party infrastructure have led to an average loss of $1.47 million for large enterprises.”]

