Security News

New Linux Malware 'sedexp' Hides Credit Card Skimmers Using Udev Rules
2024-08-25 05:37

Cybersecurity researchers have uncovered a new stealthy piece of Linux malware that leverages an unconventional technique to achieve persistence on infected systems and hide credit card skimmer...

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems
2022-07-20 12:14

Magecart campaigns have been skimming payment-card credentials of unsuspecting customers using three online restaurant-ordering systems, affecting about 300 restaurants that use the services and compromising tens of thousands of cards so far, researchers have found. Two separate ongoing Magecart campaigns have injected e-skimmer scripts into the online ordering portals of restaurants using three separate platforms: MenuDrive, Harbortouch, and InTouchPOS, researchers from Recorded Future revealed in a blog post this week.

Target open sources scanner for digital credit card skimmers
2022-02-03 17:27

Target, one of the largest American department store chains and e-commerce retailers, has open sourced 'Merry Maker' - its years-old proprietary scanner for payment card skimming. A skimmer is malicious code injected into shopping sites to steal customers' credit card data at checkout.

Evasive Credit Card Skimmers Using Homograph Domains and Infected Favicon
2020-08-07 06:01

Cybersecurity researchers today highlighted an evasive phishing technique that attackers are exploiting in the wild to target visitors of several sites with a quirk in domain names, and leverage modified favicons to inject e-skimmers and steal payment card information covertly. Called an internationalized domain name homograph attack, the technique has been used by a Magecart group on multiple domains to load the popular Inter skimming kit hidden inside a favicon file.

Researcher Spots New Tricks in Web Payment Card Skimmers
2020-01-03 14:03

A researcher has found two new methods that payment card number thieves are using to try to stay under the radar. The attackers are sometimes referred to as Magecart, a name for a slew of groups that steal payment card numbers.

Bluetana App Quickly Detects Hidden Bluetooth Card Skimmers at Gas Pumps
2019-08-16 08:03

In recent years, gas stations have become one of the favorite targets for thieves who are stealing customers' credit and debit card information by installing a Bluetooth-enabled payment card...

Can you really sniff out gas station card skimmers with your phone?
2019-02-20 21:48

A viral post suggests (wrongly) that card skimmers always use Bluetooth. Anyway, just looking at nearby Bluetooth names doesn't help much...

Detecting Credit Card Skimmers
2018-10-05 11:44

Interesting research paper: "Fear the Reaper: Characterization and Fast Detection of Card Skimmers": Abstract: Payment card fraud results in billions of dollars in losses annually. Adversaries...

How to Avoid Card Skimmers at the Pump
2018-06-26 17:59

Previous stories here on the proliferation of card-skimming devices hidden inside fuel pumps have offered a multitude of security tips for readers looking to minimize their chances of becoming the...

Forget card skimmers, chip-card shimmers will be your next nightmare (The Register)
2016-08-03 23:49