A gang of threat actors is using social media link buttons to hide malicious code that leads to a credit card skimmer. To make the image appear safe, the gang named their payloads after one of at least six trusted social media companies. Threat actors could use the same technique to hide samples of other kinds of malware. The attacks highlight the lengths to which attackers are willing to go in order to hide their malware. It also shows you cant always detect malware by testing for valid syntax.”]
Source: https://securityintelligence.com/news/credit-card-skimmer-hidden-social-media-buttons/

