Hackers swap stealth for realistic checkout forms to steal credit cards

Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,256
Content source
https://www.bleepingcomputer.com/news/security/hackers-swap-stealth-for-realistic-checkout-forms-to-steal-credit-cards/
Hackers are hijacking online stores to display modern, realistic-looking fake payment forms to steal credit cards from unsuspecting customers.

These payment forms are shown as a modal, HTML content overlayed on top of the main webpage, allowing the user to interact with login forms or notification content without leaving the page.

When modals are active, the background content is sometimes dimmed or blurred to draw attention to the modal content.

In a new report by Malwarebytes, MageCart skimmers are now hijacking legitimate online store's payment pages to show their own fake payment forms as modals to steal customers' credit cards.

These modals stand out because they sometimes look even better than the original, having no visual signs that could cause suspicion that they are not real.
Click to expand...
Online shoppers need to be highly vigilant and prefer electronic payment methods or one-time private cards with charge limits that are useless in the hands of cybercriminals.
Click to expand...
www.bleepingcomputer.com

Hackers swap stealth for realistic checkout forms to steal credit cards

Hackers are hijacking online stores to display modern, realistic-looking fake payment forms to steal credit cards from unsuspecting customers.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • +Reputation
  • Like
Reactions: Andy Ful, Nevi, TairikuOkami and 1 other person
TairikuOkami

TairikuOkami

Level 37
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,638
  • Domains abusing Cloudflare
Click to expand...
So DNS or phishing protection would not block it.
In the past months there have been several Magecart skimmers abusing Google Tag Manager in one way or another.
Click to expand...
Then again ... :p
capture_04292023_092658.jpg capture_04292023_093243.jpg
 
  • +Reputation
Reactions: Trident, Nevi and Gandalf_The_Grey
You must log in or register to reply here.

Similar threads

vtqhtr413
    • +Reputation
    • Like
Malware News Facebook PrestaShop module exploited to steal credit cards
Replies
0
Views
2,107
Security News
vtqhtr413
vtqhtr413
Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Hackers modify online stores’ 404 pages to steal credit cards
Replies
0
Views
1,152
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Applause
    • +Reputation
Security News Japanese police create fake support scam payment cards to warn victims
Replies
0
Views
1,471
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top