Scott Helme offers insights into web security, HTTPS adoption, and best practices for securing online services, providing articles, workshops, and security tools to help organizations protect against cyber threats. By exploring Scott Helme's curated content, developers can learn about HTTP security headers, Content Security Policy (CSP), and TLS encryption for securing web applications and APIs. Whether you're a web developer, sysadmin, or security professional, Scott Helme offers resources to enhance your cybersecurity knowledge and defend against common vulnerabilities.

Scott Helme

The European Space Agency's online shop was compromised by a Magecart attack that injected malicious JavaScript to steal payment card data. The attack followed a typical pattern: checking for checkout pages, loading a fake jQuery payload, cloning the payment button, displaying a fraudulent Stripe payment form, and exfiltrating complete card details plus personal information to attacker-controlled servers. The attack could have been prevented at multiple stages using Content Security Policy and monitoring solutions that detect unauthorized script execution, new domain dependencies, or data exfiltration attempts. The attacker's lookalike domain (esaspaceshop.pics) has since been acquired and repurposed to point to a security case study.

The European Space Agency got hacked, and now we own the domain used!