HackDig : Dig high-quality web security articles for hackers

Crooks use software skimmer that pretends to be a security firm

Security experts from Sucuri analyzing a software skimmer that is abusing its brand name in order to evade detection. Researchers at Sucuri analyzed a software skimmer that is using their brand name in order to evade detection. The e-skimmer is a base64-encoded JavaScript blob that attackers inject into target webpages. During a routine investigation,
Publish At:2020-11-16 13:13 | Read:184 | Comments:0 | Tags:Breaking News Cyber Crime Malware credit card e-skimming Hac

Hackers use e-skimmer that exfiltrates payment data via Telegram

Researchers observed a new tactic adopted by Magecart groups, the hackers used Telegram to exfiltrate stolen payment details from compromised websites. Researchers from Malwarebytes reported that Magecart groups are using the encrypted messaging service Telegram to exfiltrate stolen payment details from compromised websites. Attackers encrypt payment d
Publish At:2020-09-02 12:30 | Read:499 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware e-skimming hacking

North Korean Lazarus APT stole credit card data from US and EU stores

North Korea-linked Lazarus APT has been stealing payment card data from customers of large retailers in the U.S. and Europe for at least a year. Sansec researchers reported that North Korea-linked Lazarus APT group has been stealing payment card information from customers of large retailers in the U.S. and Europe for at least a year. The threat actors
Publish At:2020-07-06 10:20 | Read:662 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware e-skimming L

Crooks hide e-skimmer code in favicon EXIF Metadata

Malwarebytes experts observed crooks hiding a software skimmer in the EXIF metadata of an image that was surreptitiously loaded by compromised online stores. While investigating a Magecart attack, experts found an e-skimmer code hidden in the EXIF metadata of an image file and surreptitiously loaded by compromised online stores. The malicious script d
Publish At:2020-06-26 17:22 | Read:627 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware credit card e-skim

Crooks leverage Google Analytics in web skimming attacks

Security researchers at Kaspersky uncovered a web skimming campaign leveraging Google Analytics service to steal user data. Recently, researchers at Kaspersky identified several web skimming attacks that abused Google Analytics service to exfiltrate data stolen with an e-skimmer software. Threat actors exploit the trust in Analytics to bypass Content S
Publish At:2020-06-22 16:50 | Read:636 | Comments:0 | Tags:Breaking News Cyber Crime Hacking e-skimming Google Analytic

Tools