Make sure to secure your accounts
Dutch security researcher Willem “gwillem” de Groot has discovered a payment skimmer on broadcaster ABS-CBN’s online store recently.
According to de Groot, the payment skimmer has been active since August this year and has been intercepting and sending financial data of customers to a server located in Irkutsk, Russia.
The malicious code was hidden inside a JavaScript file and scrapes information from payment cards used by customers that were buying stuff from the online store. From the looks of things, the code is similar to the one used on recent breaches in other high-profile websites, including British Airways and Ticketmaster.
The online store sold ABS-CBN branded-merchandise, including apparel, books, CDs, DVDs and other items related to its IP and brand. The site is down as of writing.
ABS-CBN has yet to release a statement addressing the incident as of press time.
UPDATE
ABS CBN has issued a statement regarding the breach. It seems that the breach wasn’t isolated to one store, as the release states that their UAAP online store (uaapstore.com) was also affected.
As far as they know, around 213 customers have been affected by the breach but that number can still go up depending on how the company’s internal investigation goes. For their part ABS-CBN has said that they are now reaching out to affected customers, and have informed the National Privacy Commission about the breach and are working closely with the government agency.
