When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Cybercriminals are once again targetingWordPresswebsites with credit card skimmers, stealing victims sensitive payment information in the process.
This script brings up the credit card skimmer just as the victim is about to enter the payment information.
Sucuri added the skimmer can also grab data entered on legitimate payment screens in real-time, thus maximizing compatibility.
After that, it is exfiltrated to a server under the attackers control (either “valhafather[.
]xyz” or “fqbe23[.]xyz”).
To remove the malware, Sucuri suggests inspecting all custom HTML widgets.
Skimmers seem to be rising in popularity again.
