menu

Magento PHP Skimmer - validateData

2021-02-18 :: Luke
#jquery-in[.]com  #magentoinfo[.]org  #validateData  #skimmer  #fraud  #magento  #ecommerce  #PHP  #website malware  Magento PHP Skimmer - `validateData`
A PHP skimmer stealing payment data and user login data is injected into Magento core files OnepageController.php and User.php.
Read more →

How PHP Droppers Spread Malware

2021-02-11 :: Luke
#binary malware  #php dropper  #wordpress  #malspam  #website malware  How PHP Droppers Spread Malware
A breakdown of how PHP droppers are used to spread binary malware through malicious URLs and spam emails.
Read more →

BREAKDOWN: Magento 2 PHP Skimmer - $dataoo

2021-01-21 :: Luke
#$dataoo  #onfr64_qrpbqr  #testServer.php  #bardven[.]com  #breakdown  #skimmer  #magento  #ecommerce  #PHP  #website malware  BREAKDOWN: Magento 2 PHP Skimmer - $dataoo
A breakdown of a PHP skimmer found across multiple websites and injected into the Magento core file app/bootstrap.php.
Read more →

Spox is Dila Belimi

2021-01-02 :: Luke
#Spox  #Dila Belimi  #threat actor  #phishing  #attribution  #opsec  #fraud  #PHP  #website malware  Spox is Dila Belimi
Hi my name is Spox (Dila Belimi) and I like to steal from average people during a global pandemic.
Read more →

Phishers Target Vonage/Nexmo API

2020-12-28 :: Luke
#metri  #PHP  #phishing  #fraud  #website malware  Phishers Target Vonage/Nexmo API
A phishing kit targeting both the login information and also the API key for Vonage API users (previously Nexmo). The stolen API can then be used to send and receive SMS, or even calls, from a large selection of clean numbers.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.