PrestaShop GTAG Websocket Skimmer
Ben Martin During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website.…
Browsing Tag
84 posts
Decoding the Caesar Cipher Skimmer
Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so…
FakeUpdateRU Chrome Update Infection Spreads Trojan Malware
Fake Google chrome update malware, often associated with the notorious SocGholish infection, is something that we have been tracking for a number of years. It…
Skimmers in Images & GitHub Repos
Denis Sinegubko MalwareBytes recently shared some information about web skimmers that store malicious code inside real .ico files. During a routine investigation, we detected a similar issue.…
Fixing “Uncommon Download” Warnings in Google Search Console
Alycia Mitchell Over the past few months, a lot of website owners have received “uncommon download” warnings from Google Search Console. These warnings can be vague, often…
Mixed Content Warnings in Google Chrome
Peter Kankowski Migrating your website to HTTPS may seem like a simple task. Get the TLS/SSL certificate, install it on your web server, and you’re done. The…
Fake SSO Used In Multi-Email Provider Phishing
Luke Leal Single sign-on (SSO) allows users to sign into a single account (e.g Google) and access other services like YouTube or Gmail without authenticating with a…
Throwback Threat Thursday: Joomla GoogleMaps Plugin SEO Spam Injection
Fioravante Souza Throwback Threat Thursday is a series of posts where we recall older vulnerabilities that have since been patched by their developers. In the past, these…
Magento Skimmers: From Atob to Alibaba
Last year we saw a fairly massive Magento malware campaign that injected credit card stealing code similar to this: It uses the JavaScript atob function…
Fake Google Domains Used in Evasive Magento Skimmer
We were recently contacted by a Magento website owner who had been blacklisted and was experiencing McAfee SiteAdvisor “Dangerous Site” warnings. Our investigation revealed that…
Why is Your Website a Target? The SEO Value of a Website
Douglas Santos Website security is what we eat, sleep, and breathe. It’s what we do best because we deal with hacked websites every single day, thousands of…