A supply-chain campaign infecting Sotheby’s real-estate websites with data-stealing skimmers was recently observed being distributed via a Brightcove cloud-video platform instance: https://www.brightcove.com According to Palo Alto Networks’ Unit 42 division, researchers noticed that most of the activity affected real-estate-related sites. At least 100 of them were successfully infected.
A full list of affected websites can be found here:
https://github.com/pan-unit42/iocs/blob/master/Skimmer
