Security News > 2020 > March > Tupperware Cyberattack Stores Away Customer Payment Cards

Tupperware Cyberattack Stores Away Customer Payment Cards
2020-03-26 18:16

Though Tupperware never responded to multiple attempts at contact by researchers, as of March 25, after research was publicly disclosed detailing the card skimmer, the malicious code was removed from the homepage.

Researchers first came across the card skimmer during a web crawl, when they identified a suspicious iframe - responsible for displaying the payment form fields presented to online shoppers - that was loaded on the Tupperware[.

The session time-out message is even copied from CyberSource, the legitimate payment platform used by Tupperware.

The Spanish version of the Tupperware site is written in Spanish, but the rogue payment form is still in English."

While Tupperware's site has since been cleared of the skimmers, researchers said that Tupperware never responded to calls, emails and social media messages regarding the issue on their site.


News URL

https://threatpost.com/tupperware-cyberattack-customer-payment-cards/154200/