Magecart hackers have been discovered hiding malicious code in 404 error pages to avoid detection. The attacks have targeted Magento and WooCommerce websites, including some belonging to large organizations in the food and retail sectors. The attacks involve three distinct phases: loader, malicious attack code, and data exfiltration. Researchers found that the default 404 page of the websites contained obfuscated JavaScript attack code. The attackers also used two other attack variants to conceal the malicious loader code. #Magecart #cybersecurity #malware

https://www.infosecurity-magazine.com/news/magecart-hackers-hide-404-error/