Web: https://www.reddit.com/r/cybersecurity/comments/rz66mo/hackers_use_video_player_to_steal_credit_cards/

Jan. 8, 2022, 6:20 p.m. | /u/dossier

cybersecurity reddit.com

I'm trying to think about this and wondering if an iframe tokenizer would've even helped. We might just not have enough info.

Possibly whitelisting external traffic would be the real trick but it sounds like the exfiltration was done host side. Unclear or I need to read it again. Thoughts?

https://www.bleepingcomputer.com/news/security/hackers-use-video-player-to-steal-credit-cards-from-over-100-sites/

submitted by /u/dossier
[link] [comments]

100 credit credit cards cybersecurity hackers video

Security Engineer

@ KAYAK | Berlin

Staff Reverse Engineer

@ Dragos, Inc. | Remote - USA

Cybersecurity Engineer

@ Sigma Defense | San Diego, California, United States

Sr Staff Engineer/Principal Engineer(Security Researcher, Security Efficacy)

@ Netskope | Bengaluru, Karnataka, India

Information Security Manager - Zurich, CH

@ Scandit | Zurich

Senior Developer C/Go (Acronis Cyber Infrastructure)

@ Acronis | Belgrade, Stari Grad, Serbia