Web Skimmer with a Domain Name Generator

Web Skimmer with a Domain Name Generator

Our security analyst Moe Obaid recently found yet another variation of a web skimmer script injected into a Magento database.

The malicious script loads the credit card stealing code from qr201346[.]pw and sends the stolen details to hxxps://gooogletagmanager[.]online/get.php. This approach is pretty typical for skimmers. However, we noticed one interesting feature of the script — instead of using one predefined domain, it generates domain names based on the current date.

Continue reading Web Skimmer with a Domain Name Generator at Sucuri Blog.

The post Web Skimmer with a Domain Name Generator appeared first on Security Boulevard.

Article Link: https://securityboulevard.com/2020/04/web-skimmer-with-a-domain-name-generator/