Hackers are abusing a new technique: combining homoglyph domains with favicons to conduct credit card skimming attacks. A new report released by Malwarebytes explains how this decades-old technique is now leveraging homograph attacks. When this script would get loaded along with the site’s icon, sensitive information, including credit card numbers, would be exfiltrated to the attackers. The exploit used a “.ico”” file
Source: