- ‘Lil Billie Xanish’ is the deepfake mashup of Billie Eilish and Lil Xan Thursday 5:10 PM
- Gossip account the Shade Room to launch 3 original series on Instagram Thursday 4:46 PM
- Biden says he asked Obama not to endorse him—but people aren’t buying it Thursday 3:17 PM
- Marvel makes more money than Harry Potter and Star Wars combined Thursday 3:13 PM
- ‘Avengers: Endgame’: Obituaries for the fallen heroes Thursday 2:51 PM
- T-Mobile, Verizon admit most Americans won’t see fast 5G Thursday 1:52 PM
- PlayStation Vue is offering a sweet streaming deal for a limited time Thursday 1:42 PM
- Twitter reportedly worried banning white nationalists would also flag some Republicans Thursday 1:31 PM
- Lawyer of cop in viral assault case calls the crime a ‘Facebook misdemeanor’ Thursday 12:33 PM
- Biden’s ‘all men’-focused announcement gets roasted Thursday 11:49 AM
- Skillshare is offering new users one month of premium for free Thursday 10:44 AM
- Report: Facebook is punishing Black people for talking about racism (updated) Thursday 10:15 AM
- Biden brings tepid language to the healthcare debate Thursday 9:52 AM
- TikTok’s ‘chin on palm’ challenge has people scratching their heads Thursday 9:01 AM
- How to stream the 2019 NFL Draft for free Thursday 9:00 AM
If you’ve been jonesing to build a new PC, or just need to upgrade your graphics card, you may want to hold off purchasing anything from Newegg.com for a little while. The PC parts online retailer said on Twitter Wednesday that it discovered one of its servers had been injected with malware, potentially putting customer data at risk.
Yesterday we learned one of our servers had been injected with malware which was identified and removed from our site. We’re conducting extensive research to determine exactly what info was obtained and are sending emails to customers potentially impacted. Please check your email
— Newegg (@Newegg) September 19, 2018
In the same tweet, Newegg said it had removed the malware and is researching to see what information may have been compromised and is “sending emails to customers potentially impacted.”
Newegg, founded in 2001, is one of the globe’s largest online retailers of computer parts, ranking No. 173 on Forbes’ list of the largest private companies in 2017 with 45 million unique visitors per month. According to Forbes, Newegg earned $2.7 billion in revenue the same year.
According to TechCrunch, hackers managed to inject 15 lines of credit card-skimming code onto the retailer’s payment page from Aug. 14 to Sept. 18.
In an email to customers sent out Wednesday, Newegg CEO Danny Lee stated that the company had not yet determined which customers have been affected. He also stated that the company will be releasing a FAQ on Friday to address common customer questions.
“The malware is no longer on our site and we will be doing our best to bring the culprits to justice,” Lee wrote.
A Newegg representative did not immediately respond to a request for comment.
— Yonathan Klijnsma (@ydklijnsma) September 19, 2018
Yonathan Klijnsma, a threat researcher at cybersecurity company RiskIQ, told TechCrunch that the hack looked similar to one carried out by a group known as Magecart against British Airway two weeks ago. Conveniently enough for Magecart, their hack worked on both Newegg’s desktop and mobile storefronts.
“While some Magecart groups still target smaller shops, the subgroup responsible for the attacks against Newegg and British Airways is particularly audacious, performing cunning, highly targeted attacks with skimmers that seamlessly integrate into their targets’ websites,” Klijnsma wrote in a RiskIQ blog.
Joseph Knoop is a gaming writer for Daily Dot, a native Chicagoan, and a slave to all things Overwatch. He co-founded the college geek culture outlet ByteBSU, then interned at Game Informer, and now writes for a bunch websites his parents have never heard of.