- Here’s why you shouldn’t buy a Nintendo Switch until mid-August Today 5:11 PM
- Man blasted for making his coworkers babysit his child Today 5:07 PM
- Pete Buttigieg’s country radio interview was blocked from the air Today 4:35 PM
- 15-year-old Smash Bros. prodigy caught using racist slur in private Discord server Today 3:47 PM
- Instagram users who post pet pictures more likely to get hacked Today 3:45 PM
- Post-Prime Day recap: Shipping delays, more sales, and a scam Today 3:08 PM
- Jacob Wohl returns to Twitter … for now Today 1:56 PM
- How to stream WWE Raw Reunion Today 1:35 PM
- ‘I hope Trump deports you’: Woman goes on racist rant to Spanish speakers at a store Today 1:24 PM
- Emoji Mashup Bot gives life to unidentifiable emotions Today 1:15 PM
- Notorious grifter Anna Sorokin reportedly blocked from profiting off Netflix series Today 12:45 PM
- Charlottesville attacker’s Twitter account included praise for Hitler Today 12:10 PM
- ‘Short Treks’ trailer: Spock, Pike, and Number One return Today 11:57 AM
- Everything we know about ‘Star Trek: Lower Decks,’ the new animated show Today 11:55 AM
- Cole Carrigan says he left Team 10 after being called homophobic slur Today 11:32 AM
If you’ve been jonesing to build a new PC, or just need to upgrade your graphics card, you may want to hold off purchasing anything from Newegg.com for a little while. The PC parts online retailer said on Twitter Wednesday that it discovered one of its servers had been injected with malware, potentially putting customer data at risk.
Yesterday we learned one of our servers had been injected with malware which was identified and removed from our site. We’re conducting extensive research to determine exactly what info was obtained and are sending emails to customers potentially impacted. Please check your email— Newegg (@Newegg) September 19, 2018
In the same tweet, Newegg said it had removed the malware and is researching to see what information may have been compromised and is “sending emails to customers potentially impacted.”
Newegg, founded in 2001, is one of the globe’s largest online retailers of computer parts, ranking No. 173 on Forbes’ list of the largest private companies in 2017 with 45 million unique visitors per month. According to Forbes, Newegg earned $2.7 billion in revenue the same year.
According to TechCrunch, hackers managed to inject 15 lines of credit card-skimming code onto the retailer’s payment page from Aug. 14 to Sept. 18.
In an email to customers sent out Wednesday, Newegg CEO Danny Lee stated that the company had not yet determined which customers have been affected. He also stated that the company will be releasing a FAQ on Friday to address common customer questions.
“The malware is no longer on our site and we will be doing our best to bring the culprits to justice,” Lee wrote.
A Newegg representative did not immediately respond to a request for comment.
Yonathan Klijnsma, a threat researcher at cybersecurity company RiskIQ, told TechCrunch that the hack looked similar to one carried out by a group known as Magecart against British Airway two weeks ago. Conveniently enough for Magecart, their hack worked on both Newegg’s desktop and mobile storefronts.
“While some Magecart groups still target smaller shops, the subgroup responsible for the attacks against Newegg and British Airways is particularly audacious, performing cunning, highly targeted attacks with skimmers that seamlessly integrate into their targets’ websites,” Klijnsma wrote in a RiskIQ blog.
Joseph Knoop is a gaming writer for Daily Dot, a native Chicagoan, and a slave to all things Overwatch. He co-founded the college geek culture outlet ByteBSU, then interned at Game Informer, and now writes for a bunch websites his parents have never heard of.