Hackers Stealing Browser Fingerprints to Bypass Security & Impersonate Users

Cybercriminals are using stolen browser fingerprints to bypass security checks and impersonate users. The ScreamedJungle attack targets outdated Magento e-commerce platforms to inject malicious scripts that steal unique digital identifiers. This allows hackers to evade security systems, including multi-factor authentication (MFA) and device reputation checks.

Hackers Exploiting Magento Sites

  • Attackers are targeting outdated Magento 2.3 stores, injecting malicious scripts to steal user data.

What is Browser Fingerprinting?

  • It collects device and browser details like screen resolution, installed fonts, and graphics settings.
  • Security systems use it for fraud detection, but hackers use it to mimic real users.

How the Attack Works

  • Hackers inject JavaScript code into infected e-commerce sites.
  • The script collects over 50 parameters from users' browsers.
  • Stolen fingerprints are stored in a hacker-controlled database.
  • Attackers use this data to bypass security measures like MFA.

Global Impact

  • 200,000 users affected monthly from nine Italian e-commerce sites alone.
  • Millions of fingerprints stolen worldwide since May 2024.

How to Stay Safe Businesses:

  • Update all software and patch security vulnerabilities.
  • Monitor websites for suspicious script injections.
  • Use device-binding protocols to prevent unauthorized logins.

How to Stay Safe Users:

  • Use privacy-focused browsers like Brave or Tor.
  • Install anti-fingerprinting extensions to limit tracking.
  • Be cautious while shopping online—stick to trusted platforms.

Cybercriminals are evolving their tactics by stealing browser fingerprints to evade security checks and impersonate users. The ScreamedJungle campaign has already affected thousands of users worldwide. To stay safe, businesses must secure their websites, and users should take extra precautions while browsing and shopping online.

Stay protected with Net Protector Antivirus and safeguard your digital identity!