Security News Attackers Use Localized Card Stealing Scripts, Forms to Plunder Their Victims

[silversurfer]

Content source

https://news.softpedia.com/news/attackers-use-localized-card-stealing-scripts-forms-to-help-their-victims-524177.shtml

Localized fake payment form campaigns using injected scripts to target Magento-powered e-commerce websites from Italy and Bulgaria have been detected by the Sucuri website security service's research team.

Bad actors have continuously upgraded credit card stealing malware with new features and capabilities designed to hide in plain sight to take advantage of e-commerce customers' distraction.

"We’ve been regularly seeing injected scripts with URLs that either mimic or include a portion of the victim’s site domain," said the Sucuri research team. "Sometimes the injected code also references the victim’s site. Recently, we’ve come across another level of customization."