Hackers created a fake image-hosting portal to hide a web skimming operation.
In one of the most complex and innovative hacking campaigns detected to date, a hacker group created a fake icons hosting website in order to disguise malicious code meant to steal payment card data from hacked websites.
The operation is what security researchers refer to these days as a web skimming, e-skimming, or a Magecart attack.
Hackers breach websites and then hide malicious code on its pages, code that records and steals payment card details as they're entered in checkout forms.
Web skimming attacks have been going on for almost four years, and as security firms are getting better at detecting them, attackers are also getting craftier.