You searched for skimmer

Credit Card Skimmer and Backdoor on WordPress E-commerce Site

Puja Srivastava

March 14, 2025

The battle against e-commerce malware continues to intensify, with attackers deploying increasingly sophisticated tactics. In a recent case at Sucuri, a customer reported suspicious files…

Read the Post

Google Tag Manager Skimmer Steals Credit Card Info From Magento Site

Puja Srivastava

February 6, 2025

At Sucuri, we are committed to protecting websites from malware and other cyber threats. Recently, we were contacted by a customer who had experienced credit…

Read the Post

Stealthy Credit Card Skimmer Targets WordPress Checkout Pages via Database Injection

Puja Srivastava

January 9, 2025

Recently, we released an article where a credit card skimmer was targeting checkout pages on a Magento site. Now we’ve come across sophisticated credit card…

Read the Post

Credit Card Skimmer Malware Targeting Magento Checkout Pages

Puja Srivastava

November 26, 2024

Magento websites are a frequent target for cybercriminals due to their widespread usage in eCommerce and the valuable customer data they handle. During a routine…

Read the Post

Woo Skimmer Uses Style Tags and Image Extension to Steal Card Details

Ben Martin

September 12, 2024

This post starts the same way many others do on this blog, and it will be familiar to those who keep up with website security:…

Read the Post

PrestaShop GTAG Websocket Skimmer

Ben Martin

August 14, 2024

During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website.…

Read the Post

Decoding the Caesar Cipher Skimmer

Ben Martin

June 20, 2024

Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so…

Read the Post

Server Side CC Skimmer Lodged in Obscure Plugin

Server Side Credit Card Skimmer Lodged in Obscure Plugin

Ben Martin

May 22, 2024

Attackers are always finding new ways to inject malware into websites and new ways to obscure it to avoid detection, but they’re always up to…

Read the Post

Credit Card Stealer Hidden in Fake Facebook Pixel Tracker

Credit Card Skimmer Hidden in Fake Facebook Pixel Tracker

Matt Morrow

April 11, 2024

In recent months, we have encountered a number of cases where attackers inject malware into website software that allows for custom or miscellaneous code —…

Read the Post

MageCart WordPress Plugin Injects Malicious User & Credit Card Skimmer

Ben Martin

December 21, 2023

One of our analysts recently found an interesting malicious plugin injected into a WordPress / WooCommerce ecommerce website which both creates and conceals a bogus…

Read the Post

Magecart stealing credit card information with a single white invisible pixel

Decoding Magecart: Credit Card Skimmers Concealed Through Pixels & Images

Ben Martin

September 12, 2023

MageCart infections most often come in the form of complex, obfuscated JavaScript injected into Magento database tables such as core_config_data, or as malicious plugins or…

Read the Post