Payments News

On The Web

nbsp;

Risk

Costco Discloses Data Breach After Finding Credit Card Skimmer

“Costco Wholesale Corporation has warned customers in notification letters sent this month that their payment card information might have been stolen while recently shopping at one of its stores…Costco discovered the breach after finding a payment card skimming device in one of its warehouses during a routine check conducted by Costco personnel.”
nbsp;

Risk

Checkout Skimmers Powered by Chip Cards

“Easily the most sophisticated skimming devices made for hacking terminals at retail self-checkout lanes are a new breed of PIN pad overlay combined with a flexible, paper-thin device that fits inside the terminal’s chip reader slot. What enables these skimmers to be so slim? They draw their power from the low-voltage current that gets triggered […]
nbsp;

Risk

Bluetooth Overlay Skimmer That Blocks Chip

“As a total sucker for anything skimming-related, I was interested to hear from a reader working security for a retail chain in the United States who recently found Bluetooth-enabled skimming devices placed over top of payment card terminals at several stores. Interestingly, these skimmers interfered with the terminal’s ability to read chip-based cards, forcing customers […]
nbsp;

Risk

Malicious Script Steals Credit Card Info Stolen by Other Hackers

“A threat actor has infected an e-commerce store with a custom credit card skimmer designed to siphon data stolen by a previously deployed Magento card stealer. Credit card skimmers (aka payment card skimmers or Magecart scripts) are JavaScript scripts that cybercrime groups known as Magecart groups inject into hacked e-commerce sites as part of web skimming […]
nbsp;

Risk

Boom! Hacked Page on Mobile Phone Website Is Stealing Customers’ Card Data

“If you’re in the market for a new mobile phone plan, it’s best to avoid turning to Boom! Mobile. That is, unless you don’t mind your sensitive payment card data being sent to criminals in an attack that remained ongoing in the last few hours. According to researchers from security firm Malwarebytes, Boom! Mobile’s boom.us […]
nbsp;

Risk

Warner Music Discloses Months-Long Web Skimming Incident

“Music recording powerhouse Warner Music Group has disclosed today a security incident that involved some of the company’s online stores. Called “web skimming” or “magecart,” this type of attack happens when hackers take control over a website and insert malicious code that logs customer details entered inside payment forms.”