all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft

Add to bookmarks
Dec. 22, 2023, 4:47 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Threat hunters have discovered a rogue WordPress plugin that's capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit card information.
The skimming activity is part of a Magecart campaign targeting e-commerce websites, according to Sucuri.
"As with many other malicious or fake WordPress plugins it contains some deceptive information at

bogus campaign card code commerce credit credit card e-commerce fake hunters information javascript magecart malicious plugin plugins rogue skimming steal sucuri targeting theft threat websites wordpress wordpress plugin wordpress plugins

Visit resource

More from thehackernews.com / The Hacker News

CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability 3 hours ago | thehackernews.com
account account takeover agency catalog +28
New Cuttlefish Malware Hijacks Router Connections, Sniffs for Cloud Credentials 4 hours ago | thehackernews.com
authentication called cloud connections +24
Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds 19 hours ago | thehackernews.com
analysis bitcoin blockchain clusters +19
Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers 19 hours ago | thehackernews.com
android android devices android malware binary +21
Everyone's an Expert: How to Empower Your Employees for Cybersecurity Success 22 hours ago | thehackernews.com
course cybersecurity decision employees +8
ZLoader Malware Evolves with Anti-Analysis Trick from Zeus Banking Trojan 23 hours ago | thehackernews.com
analysis anti-analysis authors banking +14
Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia 1 day, 3 hours ago | thehackernews.com
agency classified defense documents +17
Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years 1 day, 20 hours ago | thehackernews.com
attacks campaigns containers cybersecurity +10
U.S. Government Releases New AI Security Guidelines for Critical Infrastructure 1 day, 23 hours ago | thehackernews.com
address ai risks ai security artificial +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;
View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya
View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia
View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States
View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote
View on infosec-jobs.com
View more jobs