Hackers Stealing Credit Card Info Via e-Commerce WordPress Sites

Share post:

Cybercriminals are now injecting credit card swipers on random plugins from e-commerce WordPress sites to carry out credit card theft.

The process begins with hacking into WordPress sites, while also injecting a backdoor into the site, which allows them to keep their access to the site even after installing updates.

After that, the cybercriminals go further and add their malicious code to random plugins.

Administrators should follow several steps to protect themselves against card snatchers, including limiting the wp-admin range to specific IP addresses only.

Once this step has been taken, the threat actors will not be able to access the site, even after stealing administrator cookies and injecting a backdoor.

In addition, administrators are advised to conduct integrity monitoring through the use of active server-side scanners to ensure that no code changes last too long before they are detected.

Organizations should also develop the habit of reading logs and looking deeply into the details.

For more information, read the original story in BleepingComputer.

SUBSCRIBE NOW

Related articles

20 dollars unmasks a major vulnerability in the internet infrastructure. Cyber Security Today for Friday the 13th, September 2024

US Cyber Security and Infrastructure Agency -  CISA has added three significant vulnerabilities to its “known exploited vulnerabilities...

Payment gateway breach exposes 1.7 million credit card holders

Slim CD, a payment gateway provider, recently disclosed a significant data breach that impacted nearly 1.7 million credit...

AI Healthcare Firm Exposes 5.9 TB of Sensitive Mental Health Data

In a significant data security incident, Confidant Health, a Texas-based AI healthcare platform, inadvertently exposed 5.3 terabytes of...

Cyber Security Today – Week In Review for September 7, 2024

Cyber Security Today - Weekend Edition: Toronto School Board Hack, MoveIT Breach & Data Privacy Concerns This weekend edition...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways