menu

PHP -> JavaScript Conversion - $dataoo Skimmer

2021-04-02 :: Luke
#$dataoo  #fetch('php://input')  #onfr64_qrpbqr  #testServer.php  #bardven[.]com  #skimmer  #magento  #ecommerce  #PHP  #JavaScript  #website malware  PHP -> JavaScript Conversion - $dataoo Skimmer
A comparison of a skimmer that an attacker rolled out in separate PHP and JavaScript versions. Big thanks to Baryo (@ctrl__esc)!
Read more →

Backticks + $_POST = PHP minishell

2021-03-25 :: Luke
#backdoor  #minishell  #one-liner  #PHP  #website malware  Backticks + $_POST = PHP minishell
The use of the lesser known backtick operator and $_POST results in probably one of the smallest PHP one-liner minishells: ~12 characters
Read more →

PaaS à la carte: Phishing Kit Caught In Development

2021-03-19 :: Luke
#battleplans  #PHP  #phishing  #dev  #fraud  #website malware  PaaS à la carte: Phishing Kit Caught In Development
A phishing kit found in-the-wild during the development stage and leaks the ‘order notes’ from the buyer.
Read more →

Magento PHP Skimmer - new validateData variant

2021-03-01 :: Luke
#validateData  #variant  #skimmer  #fraud  #magento  #ecommerce  #PHP  #website malware  Magento PHP Skimmer - new `validateData` variant
A variant of the validateData skimmer. This skimmer is saving payment data to a secondary file after the skimmer is injected into the Magento core file OnepageController.php.
Read more →

Magento PHP Skimmer - validateData

2021-02-18 :: Luke
#jquery-in[.]com  #magentoinfo[.]org  #validateData  #skimmer  #fraud  #magento  #ecommerce  #PHP  #website malware  Magento PHP Skimmer - `validateData`
A PHP skimmer stealing payment data and user login data is injected into Magento core files OnepageController.php and User.php.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.