In addition to injecting a card skimmer into target Magento, WooCommerce, Shopify, and WordPress sites, the the threat actor is also hijacking targeted domains to deliver the malware to other sites.
Source: Dark Reading: Cloud
Researchers Spot a Different Kind of Magecart Card-Skimming Campaign
- AI-driven phishing attacks deceive even the most aware users
- Panda Restaurant Corporate Systems Hacked: Customer Data Exposed
- NSW club patrons advised to replace ID documents after leak of more than a million records
- Aussie Early Adopters of Copilot for Security
- Hacker free-for-all fights for control of home and office routers everywhere