CronRat Magecart malware uses 31st February date to remain undetected

Advisories

Discover Hacks/Cracks News

CronRat Magecart malware uses 31st February date to remain undetected

4.Lock AbstractDigital

Security researchers have discovered a Linux-based remote access trojan (RAT) that uses an unusual stealth technique to remain out of sight from security products. The malware, dubbed CronRat, hides in the calendar subsystem of Linux servers (“cron”) on a non-existent day, 31 February, according to a blog post by security researchers at Sansec.

The researchers said that CronRat “enables server-side Magecart data theft which bypasses browser-based security solutions”. The malware was discovered on several eCommerce websites injecting Magecart payment skimmers in server-side code.

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.