Hackers swap stealth for realistic checkout forms to steal credit cards

[Gandalf_The_Grey]

Content source

https://www.bleepingcomputer.com/news/security/hackers-swap-stealth-for-realistic-checkout-forms-to-steal-credit-cards/

Hackers are hijacking online stores to display modern, realistic-looking fake payment forms to steal credit cards from unsuspecting customers.

These payment forms are shown as a modal, HTML content overlayed on top of the main webpage, allowing the user to interact with login forms or notification content without leaving the page.

When modals are active, the background content is sometimes dimmed or blurred to draw attention to the modal content.

In a new report by Malwarebytes, MageCart skimmers are now hijacking legitimate online store's payment pages to show their own fake payment forms as modals to steal customers' credit cards.

These modals stand out because they sometimes look even better than the original, having no visual signs that could cause suspicion that they are not real.

Online shoppers need to be highly vigilant and prefer electronic payment methods or one-time private cards with charge limits that are useless in the hands of cybercriminals.

Hackers swap stealth for realistic checkout forms to steal credit cards

Hackers are hijacking online stores to display modern, realistic-looking fake payment forms to steal credit cards from unsuspecting customers.

www.bleepingcomputer.com

 

[TairikuOkami]

• Domains abusing Cloudflare

So DNS or phishing protection would not block it.

In the past months there have been several Magecart skimmers abusing Google Tag Manager in one way or another.

Then again ...