Credit to Author: Jérôme Segura| Date: Wed, 04 Dec 2019 16:00:00 +0000
 | |
| Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data. Categories: Tags: appappscredit cardherokuMagecartpaasskimmerskimmersweb skimmersweb skimming |
The post There’s an app for that: web skimmers found on PaaS Heroku appeared first on Malwarebytes Labs.
Read moreCredit to Author: Threat Intelligence Team| Date: Tue, 22 Oct 2019 15:00:00 +0000
 | |
| Bread crumbs left behind open up a possible connection between Magecart Group 5 and Carbanak. Categories: Tags: advanced persistent threatsAPTsattributioncarbanakcybercriminal groupsdridexGroup5Magecartmalicious domainsmalicious websitesskimmer |
The post The forgotten domain: Exploring a link between Magecart Group 5 and the Carbanak APT appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 20 Aug 2019 15:00:38 +0000
 | |
| This blog post details the curious case of a web skimmer encountered in a poker application. Categories: Tags: drupalJavaScriptMagecartmagentopokerskimmer |
The post Magecart criminals caught stealing with their poker face on appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Thu, 01 Aug 2019 15:00:00 +0000
 | |
| Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months. Categories: Tags: code injectiongateMagecartmagentomalicious domainsmalicious IPsmalicious websitesskimmerskimmerssnifferweb skimmersweb threatweb threatswiper |
The post No summer break for Magecart as web skimming intensifies appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 21 May 2019 15:38:42 +0000
 | |
| Even e-commerce sites that do not take payment information themselves can be abused by crooks. In this post, we show how a web skimmer is able to inject an artificial iframe into the checkout page to prompt users for their credit card information. Victims will only realize something’s not right when they are redirected to the real (and external) payment form. Categories: Tags: credit carde-commercehacked websitehackingiframeMagecartmagentophishingskimmer |
The post Skimmer acts as payment service provider via rogue iframe appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Fri, 26 Apr 2019 16:06:12 +0000
 | |
| Magecart threat actors upload their skimming code onto GitHub in the latest attack against Magento websites. Categories: Tags: GitHubMagecartmagentoskimmer |
The post GitHub hosted Magecart skimmer used against hundreds of e-commerce sites appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 26 Mar 2019 15:00:00 +0000
 | |
| The latest round of vulnerable WordPress plugins leads to an active traffic monetization campaign via hacked websites. Categories: Tags: ad fraudEasy WP STMPhackedmalvertisingpluginsscamsskimmerSocial WarfaretrafficWordPress GDPR |
The post Plugin vulnerabilities exploited in traffic monetization schemes appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 26 Feb 2019 16:00:08 +0000
 | |
| E-commerce sites are a hot commodity these days. We dig into how compromised PCs are helping to hack into them to inject skimmers, whether via vulnerabilities in the websites themselves or through a new malware we discovered gaining entry via brute force. Categories: Tags: BotbotnetbruteforceGolanggoogletagmanagerMagecartmagentoskimmer |
The post New Golang brute forcer discovered amid rise in e-commerce attacks appeared first on Malwarebytes Labs.
Read more