From 403f1624512d16b2bad2610714da206ba9d3bfec Mon Sep 17 00:00:00 2001
From: Deborah Servili <deborah.servili@gmail.com>
Date: Mon, 1 Oct 2018 11:54:07 +0200
Subject: [PATCH] add ref for magecart

---
 clusters/threat-actor.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index ebf32c3..8934153 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -5886,7 +5886,8 @@
       "description": "Digital threat management company RiskIQ tracks the activity of MageCart group and reported their use of web-based card skimmers since 2016.",
       "meta": {
         "refs": [
-          "https://www.bleepingcomputer.com/news/security/british-airways-fell-victim-to-card-scraping-attack/"
+          "https://www.bleepingcomputer.com/news/security/british-airways-fell-victim-to-card-scraping-attack/",
+          "https://www.bleepingcomputer.com/news/security/feedify-hacked-with-magecart-information-stealing-script/"
         ]
       },
       "uuid": "0768fd50-c547-11e8-9aa5-776183769eab"