{"id":989,"date":"2019-12-12T11:15:42","date_gmt":"2019-12-12T11:15:42","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=989"},"modified":"2019-12-12T11:15:42","modified_gmt":"2019-12-12T11:15:42","slug":"credit-card-skimmer-shoe-stores","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/","title":{"rendered":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer To Steal User Card Details"},"content":{"rendered":"\n<p>Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.<\/p>\n\n\n\n<p>Several counterfeit online shoe stores offer great deals for the popular brands, most of them are a fraud and these fraud stores attract another fraudulent activity now.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Credit Card Skimmer Injected on Online Shoe Stores<\/strong><\/h2>\n\n\n\n<p>Malwarebytes <a rel=\"noreferrer noopener\" aria-label=\"identified (opens in a new tab)\" href=\"https:\/\/blog.malwarebytes.com\/threat-analysis\/2019\/12\/hundreds-of-counterfeit-online-shoe-stores-injected-with-credit-card-skimmer\/\" target=\"_blank\">identified<\/a> a number of fraudulent sites that selling branded shoes that are infected with the credit card skimmers. <\/p>\n\n\n\n<p class=\"has-background has-very-light-gray-background-color\">These skimmers get injected with the checkout page of the stores and they are capable of grabbing a credit card and personal details entered in the checkout pages of the website. The injected skimmers collect the details from the checkout pages and sent them to the attacker-controlled websites. <\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png\" alt=\"Credit Card Skimmer\"\/><figcaption><span style=\"text-decoration: underline;\">Skimmer Code<\/span><\/figcaption><\/figure><\/div>\n\n\n\n<p>The fraudulent sites receive traffic from forums and through social media, &#8220;Crooks troll sporting and fitness forums and leave messages to entice users to visit the fake store.&#8221;<\/p>\n\n\n\n<p>Here you can find some of the counterfeit site ads that selling popular brand stores such as Adidas, Nike, and other big brand name sneakers.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-Llg_TdudIW0\/XfIiyk2IwxI\/AAAAAAAAGVg\/w9tyssED7cceiacPmTf-IB5dAt1yUtRRwCLcBGAsYHQ\/s1600\/fake_site.png\" alt=\"\"\/><\/figure><\/div>\n\n\n\n<p>The obfuscated skimmer found to be injected with several Magento stores and the stolen data including billing addresses and credit card numbers is sent to a server hosted in China 103[.]139[.]113[.]34.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-roVcYaVHJe4\/XfIfvDMM5DI\/AAAAAAAAGVM\/JadaAE5Vv9s_U4Cp6c0bUg2r1fmUEkXVACLcBGAsYHQ\/s1600\/partial_list.png\" alt=\"Credit Card Skimmer\" width=\"600\" height=\"1427\"\/><figcaption><span style=\"text-decoration: underline;\">Botnet IPs used to Compromise Websites<\/span><\/figcaption><\/figure><\/div>\n\n\n\n<p>All the websites compromised are exploited using the same outdated software Magento under 1.9.4.2 and PHP under 5.6.40. &#8220;It\u2019s likely a malicious scanner simply crawled those IP ranges and used the same vulnerability to compromise every one of those counterfeit sites.&#8221;<\/p>\n\n\n\n<p>It is always recommended to buy the tickets from the official website, venue\u2019s box office, reputable ticketing website or through official agent or partner.<\/p>\n\n\n\n<p>Beware of the <a href=\"https:\/\/cybersecuritynews.com\/online-shopping-frauds\/\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\"Fake apps and websites (opens in a new tab)\">Fake apps and websites<\/a> that promise you to get additional discounts, these bogus apps may enter into official play store also, be careful while installing those apps.<\/p>\n\n\n\n<p class=\"has-background has-very-light-gray-background-color\"><strong>You can follow us on&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/www.linkedin.com\/company\/gbhackers\/\" target=\"_blank\">Linkedin<\/a>,&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/twitter.com\/gbhackers_news\" target=\"_blank\">Twitter<\/a>,&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/www.facebook.com\/gbhackersadmin\" target=\"_blank\">Facebook<\/a>&nbsp;for daily Cybersecurity and hacking news updates<\/strong> <\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details. Several counterfeit online shoe stores offer great deals for the popular brands, most of them are a fraud and these fraud stores attract another fraudulent activity now. Credit Card Skimmer Injected [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[10,15,48],"tags":[140,264,268,367],"class_list":{"0":"post-989","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-cyber-security","7":"category-data-theft","8":"category-threats","9":"tag-credit-card","10":"tag-magento","11":"tag-malware-attack","12":"tag-skimmer"},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v25.7.1 (Yoast SEO v25.7) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer<\/title>\n<meta name=\"description\" content=\"Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer To Steal User Card Details\" \/>\n<meta property=\"og:description\" content=\"Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/guruba008\" \/>\n<meta property=\"article:published_time\" content=\"2019-12-12T11:15:42+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png\" \/>\n<meta name=\"author\" content=\"Guru Baran\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@guruba008\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Guru Baran\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer","description":"Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/","og_locale":"en_US","og_type":"article","og_title":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer To Steal User Card Details","og_description":"Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.","og_url":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_author":"https:\/\/www.facebook.com\/guruba008","article_published_time":"2019-12-12T11:15:42+00:00","og_image":[{"url":"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png","type":"","width":"","height":""}],"author":"Guru Baran","twitter_card":"summary_large_image","twitter_creator":"@guruba008","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Guru Baran","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/"},"author":{"name":"Guru Baran","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/f7f138f8fd41a61bb60151da47730026"},"headline":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer To Steal User Card Details","datePublished":"2019-12-12T11:15:42+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/"},"wordCount":347,"commentCount":0,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png","keywords":["credit card","Magento","malware attack","skimmer"],"articleSection":["Cyber Security","Data Theft","Threats"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#respond"]}],"copyrightYear":"2019","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/","url":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/","name":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png","datePublished":"2019-12-12T11:15:42+00:00","description":"Hundreds of online web stores that sell counterfeit goods are affected by credit card skimmer that aimed to steal the customer credit card details.","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#primaryimage","url":"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png","contentUrl":"https:\/\/1.bp.blogspot.com\/-UnvKpdfD_Tc\/XfIf0Q3QegI\/AAAAAAAAGVQ\/Wd8DDTT0wuk-w2pEylSHVIBVoVPz3ANSACLcBGAsYHQ\/s1600\/skimmerads.png"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/credit-card-skimmer-shoe-stores\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"Hundreds of Fake Online Shoe Stores Injected With Credit Card Skimmer To Steal User Card Details"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World&#039;s #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/f7f138f8fd41a61bb60151da47730026","name":"Guru Baran","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/72f86da0bb72b6886d25f0ef0c881daba3a98356bc44f916f8d3a62c9e856579?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/72f86da0bb72b6886d25f0ef0c881daba3a98356bc44f916f8d3a62c9e856579?s=96&d=mm&r=g","caption":"Guru Baran"},"description":"Gurubaran is the Co-Founder and Editor-in-Chief of CyberSecurityNews.com, specializing in vulnerability analysis, malware research, ransomware, and computer forensics.","sameAs":["https:\/\/cybersecuritynews.com","https:\/\/www.facebook.com\/guruba008","https:\/\/www.linkedin.com\/in\/gurubaran-cyberwrites\/","https:\/\/x.com\/guruba008"],"url":"https:\/\/cybersecuritynews.com\/author\/guru\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/989","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=989"}],"version-history":[{"count":0,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/989\/revisions"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=989"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=989"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=989"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}