Demystifying two common misconceptions with e-commerce security
HTTPS and iframe containers augment security, but are not a panacea for online shoppers and merchants.
Skimmer acts as payment service provider via rogue iframe
Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form.
How to protect your data from Magecart and other e-commerce attacks
Magecart and other criminal groups are causing mayhem by stealing payment information from e-commerce sites, big and small. Learn how they are doing it and how to mitigate against it.
