Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files

This credit card skimmer hides in plain sight, quite literally, as it resides inside the metadata of image files.

Read more

Online credit card skimming increased by 26 percent in March

With confinement measures imposed in many countries, online shopping has soared and with it, credit card skimming, which increased by 26 percent in March.

Read more

Fraudsters cloak credit card skimmer with fake content delivery network, ngrok server

Criminals set up fraudulent infrastructure that looks like a typical content delivery network—except it isn’t. Behind it hides a credit card skimmer injected into Magento online stores.

Read more

Hundreds of counterfeit online shoe stores injected with credit card skimmer

A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data.

Read more

There’s an app for that: web skimmers found on PaaS Heroku

Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data.

Read more

Magecart Group 4: A link with Cobalt Group?

Malwarebytes threat intel partnered with security firm HYAS to connect the dots between Magecart Group 4 and the advanced threat group Cobalt.

Read more

No summer break for Magecart as web skimming intensifies

Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months.

Read more

No man’s land: How a Magecart group is running a web skimming operation from a war zone

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Read more

Select your language