printcss.host Loads JavaScript Skimmer 0x2031
A JavaScript skimmer loading from a fake CSS request to URL printcss[.]host/styles.css which was injected into the Magento 2 database table cms_block.content.
m2cmds.php: Magento 2 Dev Tool or Deceptive Hacktool?
Is this m2cmds.php file an insecure third-party dev tool for Magento - or a malicious hacktool used by an attacker?
Skimmer Loaded Via Image On MemberPress Checkout Form & Magento
A payment card skimmer hidden within an existing PNG image on an infected WordPress website that uses MemberPress and collects payment data for private membership. A variant was also found stealing payment card information on an infected Magento website.
Magento 2 Skimmer Uses getCredentialStorage
A PHP skimmer injected into a Magento 2 core file and used to steal login data from HTTP requests.
Magento 2 PHP Skimmer 0x3C Captures Customer Data To Image File
A PHP skimmer injected into a Magento 2 core file that captures POST data on the cart checkout page and saves the stolen data to an image file on the hosting server.