PHP skimmer -> secure-authorize.net (malicious)

PHP skimmer - secure-authorize.net (malicious)
A PHP skimmer that exfiltrates the stolen payment data to a fake DLL file on the malicious domain secure-authorize.net.
Read more →

PHP skimmer -> secure-authorize.net (malicious)

PHP skimmer - secure-authorize.net (malicious)
A PHP skimmer that exfiltrates the stolen payment data to a fake DLL file on the malicious domain secure-authorize.net.
Read more →

PHP -> JavaScript Conversion - $dataoo Skimmer

PHP - JavaScript Conversion - $dataoo Skimmer
A comparison of a skimmer that an attacker rolled out in separate PHP and JavaScript versions. Big thanks to Baryo (@ctrl__esc)!
Read more →

Backticks + $_POST = PHP minishell

Backticks + $_POST = PHP minishell
The use of the lesser known backtick operator and $_POST results in probably one of the smallest PHP one-liner minishells: ~12 characters
Read more →

PaaS à la carte: Phishing Kit Caught In Development

PaaS à la carte: Phishing Kit Caught In Development
A phishing kit found in-the-wild during the development stage and leaks the ‘order notes’ from the buyer.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.