E-commerce Fumble: Credit Card Skimmer Hits 17 Sites, But Buying Now Foils the Scam!
Casio UK and 16 other e-commerce sites had credit card details skimmed by malware. The skimmer, exploiting Magento software, used a double-entry attack to capture user data. Ironically, buying directly bypasses the fake form. A sign that even cybercriminals skip the details! E-tailers should consider quick website monitoring solutions for protection.
Hot Take:
Looks like Casio UK and friends had a little malware party, and our credit card details were the uninvited guests of honor. If only these e-commerce sites had used a “watchdog” instead of relying on the “cross-your-fingers” approach to online security. Let’s just say, the skimmers came, they saw, they charged it to our accounts!
Key Points:
- At least 17 e-commerce sites, including Casio UK, were hit by web skimmer malware.
- The skimmers exploited vulnerabilities in Magento e-commerce software.
- The malware redirected users to a fake checkout form to steal credit card details.
- The attack used a double-entry skimming technique, asking users for their data twice.
- Jscrambler suggests using website monitoring solutions over Content Security Policy (CSP) to prevent such attacks.
Already a member? Log in here