Credit to Author: Jérôme Segura| Date: Thu, 06 Aug 2020 17:00:00 +0000
 | |
| Threat actors load credit card skimmers using a known phishing technique called homoglyph attacks. Categories: Tags: credit card skimminghomoglyphInterkitMagecartskimmersskimming |
The post Inter skimming kit used in homoglyph attacks appeared first on Malwarebytes Labs.
Read more
Credit to Author: BrianKrebs| Date: Thu, 30 Jul 2020 15:09:24 +0000
Chip-based credit and debit cards are designed to make it infeasible for skimming devices or malware to clone your card when you pay for something by dipping the chip instead of swiping the stripe. But a recent series of malware attacks on U.S.-based merchants suggest thieves are exploiting weaknesses in how certain financial institutions have implemented the technology to sidestep key chip card security features and effectively create usable, counterfeit cards.
Read moreCredit to Author: Jérôme Segura| Date: Thu, 25 Jun 2020 17:28:12 +0000
 | |
| This credit card skimmer hides in plain sight, quite literally, as it resides inside the metadata of image files. Categories: Tags: EXIFMagecartmetadataskimmersskimming |
The post Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Wed, 08 Apr 2020 16:00:32 +0000
 | |
| Criminals are known to take advantage of events that capture people’s attention. This is true for any kind of attack that relies on social engineering, such as the phishing emails exploiting the Covid-19 pandemic. Certain events such as the current crisis not only get the attention of threat actors but they also lead to changes… Categories: Tags: coronaviruscoviMagecartshoppingskimmersskimming |
The post Online credit card skimming increased by 26 percent in March appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Wed, 26 Feb 2020 17:03:11 +0000
 | |
| Criminals set up fraudulent infrastructure that looks like a typical content delivery network—except it isn’t. Behind it hides a credit card skimmer injected into Magento online stores. Categories: Tags: cdncontent delivery networkcredit card datadata exfiltrationMagecartmagentongrokproxy serversecure tunnelsskimmerstunnelingweb skimmerweb skimmers |
The post Fraudsters cloak credit card skimmer with fake content delivery network, ngrok server appeared first on Malwarebytes Labs.
Read more
Credit to Author: Jeffrey Esposito| Date: Thu, 23 Jan 2020 12:24:05 +0000
On this podcast, Dave and Jeff discuss the latest scam targeting Travelex customers, a phishing attack on the UN, Australia relief being targeted by Magecart, and more.
Read moreCredit to Author: Jérôme Segura| Date: Tue, 10 Dec 2019 17:30:50 +0000
 | |
| A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data. Categories: Tags: counterfeitcredit cardfraudMagecartshoesskimmers |
The post Hundreds of counterfeit online shoe stores injected with credit card skimmer appeared first on Malwarebytes Labs.
Read moreCredit to Author: Jérôme Segura| Date: Wed, 04 Dec 2019 16:00:00 +0000
 | |
| Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data. Categories: Tags: appappscredit cardherokuMagecartpaasskimmerskimmersweb skimmersweb skimming |
The post There’s an app for that: web skimmers found on PaaS Heroku appeared first on Malwarebytes Labs.
Read more