Active Network, which provides Web management software for US educational institutions, announced last week that a major security breach had been discovered in its accounting software Blue Bear for schools, and a large number of users’ payment data information was exposed!
It is understood that the Blue Bear cloud system is customized by Active Network specifically for schools in the region to help schools manage related activity fund accounts. In this attack, the hacker first gained access to the Blue Bear cloud accounting software system and then implanted a software separator to collect payment card data used by users to make purchase transactions through Blue Bear software.
Active Network said that personal data of users who have paid tuition fees or purchased items through the platform may have been stolen. The data mainly includes user names, payment card numbers, payment card expiration dates, payment card security codes, and store user names and passwords. The school is still investigating the incident and affected parents have been notified.
It is reported that most of the hacking organizations under web skimming (Magecart) attacks are mainly committed to stealing payment data through software vulnerabilities. Since 2010, related security companies have monitored the activities of at least a dozen groups in the organization and found that their criminal methods are very complex. At the same time, the list of victims of such incidents is also long, including many large companies including British Airways, Newegg, Ticketmaster, MyPillow and Amerisleep, and Feedify.