all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft

Add to bookmarks
Dec. 22, 2023, 4:47 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Threat hunters have discovered a rogue WordPress plugin that's capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit card information.
The skimming activity is part of a Magecart campaign targeting e-commerce websites, according to Sucuri.
"As with many other malicious or fake WordPress plugins it contains some deceptive information at

bogus campaign card code commerce credit credit card e-commerce fake hunters information javascript magecart malicious plugin plugins rogue skimming steal sucuri targeting theft threat websites wordpress wordpress plugin wordpress plugins

Visit resource

More from thehackernews.com / The Hacker News

AI Company Hugging Face Notifies Users of Suspected Unauthorized Access 1 day ago | thehackernews.com
access advisory artificial artificial intelligence +9
Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S. 1 day, 14 hours ago | thehackernews.com
access attack bricked cyber +12
Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices 1 day, 18 hours ago | thehackernews.com
attacks critical critical systems cyber +18
Beyond Threat Detection – A Race to Digital Security 1 day, 20 hours ago | thehackernews.com
attack attack surface benefits beyond +15
Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting 1 day, 21 hours ago | thehackernews.com
actor apt28 bear blizzard +24
OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns 1 day, 23 hours ago | thehackernews.com
abuse ai-powered artificial artificial intelligence +21
CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw 2 days, 14 hours ago | thehackernews.com
actively exploited agency alerts bug +34
FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine 2 days, 15 hours ago | thehackernews.com
access actor anxiety called +20
Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors 2 days, 16 hours ago | thehackernews.com
access actor alert asia +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com