skimmers – Computer Security Articles

We’ve seen a particular card skimming campaign really pick up pace lately. With hundreds of stores compromised, you may come across it if you shop online this holiday season.

MalwareBytes Security

February 26, 2020 admin

Fraudsters cloak credit card skimmer with fake content delivery network, ngrok server

Credit to Author: Jérôme Segura| Date: Wed, 26 Feb 2020 17:03:11 +0000

Criminals set up fraudulent infrastructure that looks like a typical content delivery network—except it isn’t. Behind it hides a credit card skimmer injected into Magento online stores.

Categories:

Threat analysis

Tags: cdn content delivery network credit card data data exfiltration Magecart magento ngrok proxy server secure tunnels skimmers tunneling web skimmer web skimmers

Kaspersky Security

January 23, 2020 admin

Transatlantic Cable podcast, episode 126

Credit to Author: Jeffrey Esposito| Date: Thu, 23 Jan 2020 12:24:05 +0000

On this podcast, Dave and Jeff discuss the latest scam targeting Travelex customers, a phishing attack on the UN, Australia relief being targeted by Magecart, and more.

MalwareBytes Security

December 10, 2019 admin

Hundreds of counterfeit online shoe stores injected with credit card skimmer

Credit to Author: Jérôme Segura| Date: Tue, 10 Dec 2019 17:30:50 +0000

A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data.

Categories:

Threat analysis

Tags: counterfeit credit card fraud Magecart shoes skimmers

MalwareBytes Security

December 4, 2019 admin

There’s an app for that: web skimmers found on PaaS Heroku

Credit to Author: Jérôme Segura| Date: Wed, 04 Dec 2019 16:00:00 +0000

Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data.

Categories:

Web threats

Tags: app apps credit card heroku Magecart paas skimmer skimmers web skimmers web skimming

MalwareBytes Security

October 3, 2019 admin

Magecart Group 4: A link with Cobalt Group?

Credit to Author: Threat Intelligence Team| Date: Thu, 03 Oct 2019 15:00:00 +0000

Malwarebytes threat intel partnered with security firm HYAS to connect the dots between Magecart Group 4 and the advanced threat group Cobalt.

Categories:

Threat analysis

Tags: carbanak colbalt group credit cards data theft ecommerce FIN7 group 4 HYAS JavaScript Magecart skimmers threat actor threat actor group threat actors

(Read more…)

The post Magecart Group 4: A link with Cobalt Group? appeared first on Malwarebytes Labs.

MalwareBytes Security

August 1, 2019 admin

No summer break for Magecart as web skimming intensifies

Credit to Author: Jérôme Segura| Date: Thu, 01 Aug 2019 15:00:00 +0000

Despite the heat, criminals are hard at work stealing credit card data from unaware shoppers. July marks a notable increase in web skimmer attacks over previous months.

Categories:

Web threats

Tags: code injection gate Magecart magento malicious domains malicious IPs malicious websites skimmer skimmers sniffer web skimmers web threat web threats wiper

MalwareBytes Security

July 18, 2019 admin

No man’s land: How a Magecart group is running a web skimming operation from a war zone

Credit to Author: Threat Intelligence Team| Date: Thu, 18 Jul 2019 15:00:13 +0000

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Categories:

Cybercrime

Tags: bulletproof exfiltration gate hosting IDN luhansk Magecart magento skimmers sniffers swipers ukraine