Phone : +91 95 8290 7788 | Email :

Register & Request Quote | Submit Support Ticket

Home » Cyber Security News » Magecart group breaks into MyPillow and Amerisleep websites, potentially stealing credit card information

Magecart group breaks into MyPillow and Amerisleep websites, potentially stealing credit card information

  • While MyPillow was hit with Magecart attacks in 2018, Amerisleep is said to be targeted as early as 2017.
  • The pillow manufacturing company has reworked the site after the attack but Amerisleep is still to respond with a fix.

The Magecart group — known for its notorious credit card skimming attacks, makes headlines again. This time, it has found targeting websites of mattress companies MyPillow & Amerisleep. The security incident was uncovered and detailed by Yonathan Klijnsma of RiskIQ. With its continuously evolving tactics, the group has slowly been rising to dominate the cyberspace in 2019.


  • In October 2018, Magecart registered a false typo-squat site of MyPillow revealing the possibility of an attack infrastructure.
  • The group then injected a script into the company’s web store which was hosted on the false site.
  • The script had a malicious JavaScript library for execution along with the code of a skimmer.
  • They registered another new domain to insert a script as well as a skimmer into the LiveChat service of MyPillow.
  • Altogether, these two skimmers were detected by Klijnsma and were active till November 2018.


  • In April 2017, Magecart began its credit card-skimming operation on Amerisleep. Just like the MyPillow case, an obfuscated skimmer was used.
  • The group also deployed multiple scripts during their attack on the mattress company.
  • The site had skimmers active from April to October 2017. However, after a year, Magecart started deploying skimmers again.
  • In fact, Magecart created a GitHub account in the name of Amerisleep to store their skimmer tools. This was taken down shortly.

Why it matters – While the threat group earlier targeted large firms such as British Airways, Newegg, and others, it has now eyed smaller companies.

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India













What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.


Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.


Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 95 8290 7788 | Support Number : +91 94 8585 7788
Sales Email : | Support Email :

Register & Request Quote | Submit Support Ticket