Today > vulnerabilities   -   You can now download lists of IOCs here!

PrestaShop GTAG Websocket Skimmer

Aug. 16, 2024, 5:50 p.m.

Description

During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website. While PrestaShop is not the most popular eCommerce solution for online stores it is still in the top 10 most common ecommerce platforms in use on the web, and clocks in at just above 1% of all websites (over 60,000 in total). Attackers are not discerning with what platforms they attack. If a website is identified as a potential source to steal and sell credit card details on the black market then you can be sure that the website will be a target.

Date

Published: Aug. 16, 2024, 5:36 p.m.

Created: Aug. 16, 2024, 5:36 p.m.

Modified: Aug. 16, 2024, 5:50 p.m.

Indicators

cd.iconstaff.top

Attack Patterns

T1071.001

T1203

T1027