PinnedBen BaryoMagecart and the PCI-DSS 4.0 Challenge: Is ChatGPT the Answer?Ben Baryo explores using ChatGPT for detecting Magecart attacks, as part of PCI-DSS v4 compliance. Here are the why, the how, and the…Aug 15, 2023Aug 15, 2023
PinnedBen BaryoinPerimeterXDefeating Javascript ObfuscationThe story of REstringer — a new open source Javascript deobfuscator.Jul 22, 2022Jul 22, 2022
PinnedBen BaryoinPerimeterXAutomating Skimmer DeobfuscationSharing my method for automating deobfuscation, describing code structure using AST, and introducing my open source deobfuscation tools.Jul 8, 2022Jul 8, 2022
PinnedBen BaryoinPerimeterXThe Far Point of a Static EncounterA breakdown of the Anti-VM skimmer and its variants from the earliest incarnation to the latest iteration served from staticounter.]net.Jun 23, 2022Jun 23, 2022
PinnedBen BaryoinPerimeterXMallRats: An Analysis of the Natural Fresh Mall Magecart AttackThe Natural Fresh Mall Magecart attack was first reported at the end of January 2022. Researchers discovered a mass infection of a single…May 4, 2022May 4, 2022
Ben BaryoinPerimeterXThe Evolution of a Magecart Attack Leveraging Recaptcha.tech DomainA breakdown of an attack served from recaptcha[.]tech and its progression over the course of two years.Aug 25, 20211Aug 25, 20211
Ben BaryoinPerimeterXThe Missing LNKRHow we connected several incidents our clients’ end-users experienced to a broad ad injection campaign spanning end-users across much of…Oct 22, 2020Oct 22, 2020