{"id":2810,"date":"2019-11-20T13:28:23","date_gmt":"2019-11-20T17:28:23","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=2810"},"modified":"2019-11-20T13:28:23","modified_gmt":"2019-11-20T17:28:23","slug":"everything-we-know-about-the-macys-breach","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/","title":{"rendered":"Everything We Know About the Macy&#8217;s Data Breach"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-1392 size-full\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg\" alt=\"Everything We Know About the Macy's Breach\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg 800w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Macy\u2019s security team first received information on the <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">security incident<\/a> on October 15; however, hackers may have injected the malicious code around October 7, creating a week of potential compromise.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The Macy\u2019s breach affected the online Checkout page and the Wallet page\u2014which users access through their Account page. According to a statement from the retailer, the code \u201callowed the third party to capture information submitted by customers.\u201d\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The potential data compromised in this security incident include full names, physical addresses, ZIP codes, email addresses. Worryingly, it also includes payment card numbers, card security codes, and expiration dates. However, it remains unclear how many customers suffered in the Macy\u2019s breach; in fact, the retailer contends that only a small number of customers suffered from the attack.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Critically, Macy\u2019s closed the vulnerability and removed the code on the same day they discovered it and contacted law enforcement. Also, they contacted the credit card brands whose customers may have their information exposed in the security event.\u00a0\u00a0\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What is a Magecart Attack?\u00a0<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cMagecart attacks\u201d serves as an umbrella term for several different malware attacks involving card-skimming code implants on legitimate e-commerce domains. Magecart refers to an e-commerce host.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Usually, a Magecart attack exploits a website or content management system vulnerability. Using unauthorized access, threat actors inject malicious code into the webpages handling financial data. Then, all they have to do is wait; afterward, with payment information in hand, they can harvest it to create clone cards, conduct fraudulent purchases, or sell aggregate information on the Dark Web.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Therefore, to remediate a Magecart attack, your enterprise must completely remove the malicious code and close the vulnerabilities which allowed it.\u00a0\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What the Experts Say About the Macy\u2019s Breach<\/b><\/h3>\n<h3 style=\"text-align: justify\"><b>Robert Prigge<\/b><\/h3>\n<p style=\"text-align: justify\"><i><span style=\"font-weight: 400\">Robert Prigge is President of <\/span><\/i><a href=\"https:\/\/www.jumio.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><i><span style=\"font-weight: 400\">Jumio.<\/span><\/i><\/a><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cThe Macy\u2019s data breach is concerning for two reasons. First, it released even more personally identifiable information into the dark web including names, emails, addresses and credit card information. This compromised data can be combined with other available information to create a \u201cfullz,\u201d giving criminals everything they need to commit identity theft. 2019 has been a record year for fraud and criminals are splicing together information from disconnected breaches, creating full identity profiles for sale on the dark web. Once a fullz is purchased, cybercriminals exploit the power of bots to automate and perform account takeover (ATO) fraud at scale&#8230;If a person uses a password on the originally compromised website, bots can scour the web to find other websites where those same credentials are re-used to perpetrate ATO with relative ease.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Criminals will attempt to weaponize the overwhelming amount of exposed data on the dark web to take over the retail accounts of legitimate consumers or use stolen identity data to commit account registration fraud against online retailers. This highlights the pressing need for retailers\u2014and any company with a digital presence\u2014to adopt biometric authentication solutions to protect their users and online ecosystem from digital identity fraud by verifying a user\u2019s digital identity matches their physical identity.\u201d\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Chris Kennedy<\/b><\/h3>\n<p style=\"text-align: justify\"><i><span style=\"font-weight: 400\">Chris Kennedy is CISO and VP of Customer Success at <\/span><\/i><a href=\"https:\/\/attackiq.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><i><span style=\"font-weight: 400\">AttackIQ.<\/span><\/i><\/a><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cConsumers trust companies to keep their data secure and with the holiday season around the corner, this is at the top of mind. <\/span><span style=\"font-weight: 400\">Cybercriminals are continuously looking for gaps in security defenses and vulnerabilities to turn a quick profit. In this incident, valuable financial information was stolen including credit card numbers, security codes, and expiration dates. During peak holiday shopping season, companies must continuously validate their security controls to make sure they prove enabled, configured correctly, and operating effectively. What\u2019s more, <\/span><span style=\"font-weight: 400\">companies should proactively test and evaluate their cybersecurity posture to find vulnerabilities and remediate them before they can be exploited by bad actors.\u201d\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>How to Learn More<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">How can you keep an eye out for the kind of Magecart attack which caused the Macy\u2019s breach? Deploying and maintaining a next-generation SIEM solution. Crucially, SIEM solutions can monitor for web vulnerabilities and malicious code injections; also, it can send alerts to your security team upon detecting malicious code and freeze potential security events for investigation.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Indeed, you can learn more about <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">SIEM solutions in our Buyer\u2019s Guide<\/a>! We cover the top providers and their key capabilities in detail.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/security-information-event-management-vendor-map\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/02\/SIEM_VM_SB.jpg\" alt=\"Download Link to SIEM Vendor Map\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Macy\u2019s security team first received information on the security incident on October 15; however, hackers may have injected the malicious code around October 7, creating a week of potential compromise.\u00a0 The Macy\u2019s breach affected the online Checkout [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":1392,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[551,1],"tags":[353,95,145,112,86,1181,1180,21,57,22],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Everything We Know About the Macy&#039;s Breach (And How to Respond)<\/title>\n<meta name=\"description\" content=\"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here&#039;s what we know.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Everything We Know About the Macy&#039;s Breach (And How to Respond)\" \/>\n<meta property=\"og:description\" content=\"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here&#039;s what we know.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/\" \/>\n<meta property=\"og:site_name\" content=\"SIEM Tools &amp; Security Event Management | Solutions Review\" \/>\n<meta property=\"article:published_time\" content=\"2019-11-20T17:28:23+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/\",\"name\":\"Everything We Know About the Macy's Breach (And How to Respond)\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg\",\"datePublished\":\"2019-11-20T17:28:23+00:00\",\"dateModified\":\"2019-11-20T17:28:23+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here's what we know.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Mimecast State of Email Security 2021 Shows Surge During Pandemic\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Everything We Know About the Macy&#8217;s Data Breach\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\",\"name\":\"SIEM Tools &amp; Security Event Management | Solutions Review\",\"description\":\"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Everything We Know About the Macy's Breach (And How to Respond)","description":"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here's what we know.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/","og_locale":"en_US","og_type":"article","og_title":"Everything We Know About the Macy's Breach (And How to Respond)","og_description":"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here's what we know.","og_url":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/","og_site_name":"SIEM Tools &amp; Security Event Management | Solutions Review","article_published_time":"2019-11-20T17:28:23+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/","url":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/","name":"Everything We Know About the Macy's Breach (And How to Respond)","isPartOf":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg","datePublished":"2019-11-20T17:28:23+00:00","dateModified":"2019-11-20T17:28:23+00:00","author":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Yesterday, major retailer Macy\u2019s announced they suffered a data breach as a result of a Magecart card-skimming code. Here's what we know.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#primaryimage","url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/03\/ransomware-3-mod.jpg","width":800,"height":400,"caption":"Mimecast State of Email Security 2021 Shows Surge During Pandemic"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/everything-we-know-about-the-macys-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/security-information-event-management\/"},{"@type":"ListItem","position":2,"name":"Everything We Know About the Macy&#8217;s Data Breach"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website","url":"https:\/\/solutionsreview.com\/security-information-event-management\/","name":"SIEM Tools &amp; Security Event Management | Solutions Review","description":"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/2810"}],"collection":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/comments?post=2810"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/2810\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media\/1392"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media?parent=2810"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/categories?post=2810"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/tags?post=2810"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}