HackDig : Dig high-quality web security articles for hackers

Credit card skimmer targets ASP.NET sites

Cybercriminals typically focus on targets that can get them the highest return with the least amount of effort. This is often determined by their ability to scale attacks, and therefore on how prevalent a vulnerability or target system is. Enter: the credit card skimmer. In the world of digital skimming, we’ve seen the most activity on e-commerce co
Publish At:2020-07-06 15:00 | Read:134 | Comments:0 | Tags:Threat analysis ASP.net credit card credit card skimmer cred

The man behind Cardplanet credit card market sentenced to 9 years in prison

A 30-year old Russian national was sentenced to nine years in prison for running Cardplanet and Direct Connection credit card market. The Russian national named Aleksey Yurievich Burkov (30) was sentenced to nine years in prison for running Cardplanet and Direct Connection, two credit card market that facilitated payment card fraud, computer hacking, and
Publish At:2020-06-27 08:48 | Read:284 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cardplanet credit card Cyb

Crooks hide e-skimmer code in favicon EXIF Metadata

Malwarebytes experts observed crooks hiding a software skimmer in the EXIF metadata of an image that was surreptitiously loaded by compromised online stores. While investigating a Magecart attack, experts found an e-skimmer code hidden in the EXIF metadata of an image file and surreptitiously loaded by compromised online stores. The malicious script d
Publish At:2020-06-26 17:22 | Read:156 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware credit card e-skim

Accessories giant Claire’s is the victim of a Magecart attack, credit card data exposed

Hackers breached the websites of the U.S. accessory giant Claire’s, and its subsidiary Icing, and gained access to customer’s credit card data. Threat actors have hacked the websites of the U.S. based jewelry and accessory giant Claire’s, and its subsidiary Icing, the security breach took place in April and attackers may have gained acce
Publish At:2020-06-15 07:15 | Read:130 | Comments:0 | Tags:Breaking News Hacking Malware credit card e-skimmer hacking

A New York man was charged with stealing credit card data via SQL Injection attacks

The US DoJ announced that a New York City man was charged with hacking, credit card trafficking, and money laundering conspiracies. New York City man Vitalii Antonenko (28) was charged with hacking, credit card trafficking, and money laundering conspiracies, states the US DoJ. The man was arrested in March 2019 and detained after his arrival from Ukrai
Publish At:2020-05-30 16:46 | Read:244 | Comments:0 | Tags:Breaking News Cyber Crime credit card Hacking Information Se

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Maze Ransomware operators claim to have gained access to the network of Banco BCR of Costa Rica and stolen 11 million credit card credentials. Maze Ransomware operators claim to have hacked the network of the state-owned Bank of Costa Rica Banco BCR and to have stolen internal data, including 11 million credit card credentials. Banco BCR has equity of
Publish At:2020-05-03 08:26 | Read:379 | Comments:0 | Tags:Breaking News Cyber Crime Malware Banco BCR credit card Cybe

Tupperware Website Compromised with Credit Card Skimmer

Digital attackers compromised the website of kitchen and household products manufacturer Tupperware with a credit card skimmer.On March 20, researchers at Malwarebytes observed that attackers had compromised tupperware[.]com by hiding malicious code within an image file. This code activated when a user attempted to check out and complete their purchase on Tu
Publish At:2020-03-27 09:26 | Read:500 | Comments:0 | Tags:IT Security and Data Protection Latest Security News credit

Criminals hack Tupperware website with credit card skimmer

On March 20, Malwarebytes identified a targeted cyberattack against household brand Tupperware and its associated websites that is still active today. We attempted to alert Tupperware immediately after our discovery, but none of our calls or emails were answered. Threat actors compromised the official tupperware[.]com site—which averages close to 1 millio
Publish At:2020-03-25 14:34 | Read:492 | Comments:0 | Tags:Hacking credit card Magecart skimmer skimming steganography

TrueFire Guitar tutoring website was hacked, financial data might have been exposed

The online guitar tutoring website TrueFire was compromised by hackers in a classic Magecart style attack that exposed customers’ payment card data. The popular online guitar tutoring website TrueFire has suffered a ‘Magecart‘ style security breach that might have exposed customers’ personal information and payment card data. T
Publish At:2020-03-18 05:49 | Read:611 | Comments:0 | Tags:Breaking News Cyber Crime Hacking credit card information se

The parabola of a prolific cyber-criminal known as Dton

Check Point researchers detailed the activity of a prolific cyber-criminal known as ‘Dton’ that earned at least $100,000 US from his operations. Over the past few months, experts at Check Point have monitored the activity of a prolific cyber-criminal known as ‘Dton’. The man is active at least since 2013 and already earned at least $100,000 US from his ‘w
Publish At:2020-03-17 10:50 | Read:529 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware carding credit car

Card data stole from the Volusion security breach surfaces on the dark web

Security experts have discovered that card data stolen last year from Volusion-hosted online stores is now available for sale on the dark web. Experts from the threat intel firm Gemini Advisory have discovered that card data stolen last year from Volusion-hosted online stores have surfaced on the dark web. Volusion is a privately-held technology compan
Publish At:2020-03-12 13:38 | Read:683 | Comments:0 | Tags:Breaking News Cyber Crime Deep Web Hacking card skimmers cre

Group-IB detects Half a Million Indian Banks’ Cards on Joker’s Stash Cardshop

Group-IB experts detected a database containing over 460,000 payment card records uploaded to Joker’s Stash cardshops, most of records were from the Indian banks. Group-IB, a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has detected a database containing over 460,000 payment card records uploaded to one of the most
Publish At:2020-02-09 10:43 | Read:466 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Deep Web credit card d

New evasion techniques found in web skimmers

For a number of years, criminals have been able to steal credit card details from unaware online shoppers without attracting too much attention. Few people in the security industry were talking about these credit card web skimmers, both server-side and client-side, before the latter became largely known as Magecart. It took some major incidents, notably t
Publish At:2020-01-02 16:50 | Read:998 | Comments:0 | Tags:Threat analysis credit card Magecart skimmer steganography w

A week in security (December 9 – 15)

Last week on Malwarebytes Labs, we cautioned readers against purchasing potentially privacy-invasive, cyber-insecure smart doorbells, warned about a new credit card skimmer vulnerability embedded within hundreds of fraudulent web sites selling supposedly name-brand shoes, and looked at the newest veteran’s assistance program launched by the nonprofit Women i
Publish At:2019-12-16 16:50 | Read:825 | Comments:0 | Tags:A week in security credit card credit card skimmer ryuk Ryuk

Hundreds of counterfeit online shoe stores injected with credit card skimmer

There’s a well-worn saying in security: “If it’s too good to be true, then it probably isn’t.” This can easily be applied to the myriad of online stores that sell counterfeit goods—and now attract secondary fraud in the form of a credit card skimmer. Allured by great deals on brand names, many people end up buying products on
Publish At:2019-12-10 16:50 | Read:891 | Comments:0 | Tags:Threat analysis counterfeit credit card fraud Magecart shoes

Announce

Share high-quality web security related articles with you:)

Tools