Cybercriminals are increasingly using web shells to establish command and control over retailers’ servers during payment card skimming attacks. The most common methods for deploying a web shell are malicious application plug-ins and PHP code, Visa reports. Microsoft reported spotting 140,000 web shells per month on servers from August 2020 to January 2021. The report notes attacks skimming payment card data from online checkout functions of e-commerce sites have become more prevalent during the COVID-19 pandemic as consumers have shifted to online shopping.”]
Source: https://www.cuinfosecurity.com/visa-describes-new-skimming-attack-tactics-a-16372