Threat Intelligence

Sophisticated Card Skimmer Targets WordPress Checkout Pages via Database Injection

Posted on January 13, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary A sophisticated credit card skimmer malware has been discovered targeting WordPress websites, stealthily injecting malicious JavaScript into the site’s database to steal sensitive payment information. This skimmer, designated malware.magento_shoplift.273 by Securi, specifically activates on checkout pages, either by hijacking legitimate payment fields or injecting fake credit card forms. The stolen data, including credit card…

Read More