A malicious credit card skimmer malware has been discovered tampering with WordPress databases to collect payment details. It uses JavaScript to manipulate offending data, injecting a hidden form into webstore checkout pages, enabling it to steal user information in real time, undetected. Cybersecurity firm Sucuri advised frequent updates, regular patches and increased safeguards such as two-factor authentication to counter such attacks.
LockBit ransomware group falls victim to hackers itself
A data leak has disclosed information about negotiations with victims, Bitcoin wallet addresses, affiliate accounts, and details of attacks.
