Affiliate Referral Abuse & JavaScript Injection

Affiliate Referral Abuse & JavaScript Injection
Hackers use JavaScript injections to redirect visitors to specific websites to collect affiliate referrals.
Read more →

Mass WP Infection: trainresistor.cc

Mass WP Infection: trainresistor.cc
A large attack campaign that has been targeting vulnerable WordPress websites and using JavaScript injections to redirect victims to scams or malicious URLs.
Read more →

.wtf() Skimmer Still Targeting WooCommerce Websites

.wtf() Skimmer Still Targeting WooCommerce Websites
Almost identical to the one from back in March 2021 except this uses convert-server.com as the exfiltration domain.
Read more →

WordPress Injection Exfiltrates Admin Login

WordPress Injection Exfiltrates Admin Login
wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Read more →

.wtf() Skimmer Targets WooCommerce PayPal Pro

.wtf() Skimmer Targets WooCommerce PayPal Pro
A JavaScript skimmer designed to steal payment data entered into the WooCommerce PayPal Pro gateway on the victim’s infected ecommerce website. Lowkey exfiltration domain: templatesurvey[.]com.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.