Blog | G5 Cyber Security

Credit Card Skimmer Uses Fake CDNs To Evade Detection

Threat actors have been spotted cloaking their credit card skimmers using fake content delivery network domains as part of an effort to hide them and their exfil traffic in plain sight. The payment card data skimmer was camouflaged as a legitimate jQuery library with a drop site cloaked as fake CDN domains were discovered by security researchers at Malwarebytes Labs on the site of a popular Parisian boutique store as well as on a handful of other websites. The attackers’ end goal is to collect the payment info submitted by the compromised stores’ customers and to send it to remote sites the attackers control.

Source: https://www.bleepingcomputer.com/news/security/credit-card-skimmer-uses-fake-cdns-to-evade-detection/

Exit mobile version