There are many threats that we face when browsing the Internet. If we do not take adequate precautions, our system may be infected and our data may be compromised. In this article we are going to focus on explaining what is iFrame Skimmers , a threat that has increased a lot in recent times. In fact, we are also going to echo a new campaign of this type that affects numerous websites.
What is iFrame Skimmers
iFrame Skimmers we can say that it is one of the many techniques on the network to steal user data. Hackers are always looking for ways to steal information and compromise users’ security and privacy. This threat is also known simply as Skimmer .
Basically what cyber criminals do to carry out this type of attack is to inject malicious code into websites. This malicious iFrame could allow you to steal data from bank cards, for example.
This problem affects both small pages and large platforms. Hackers maliciously modify the code and make the payment process unsafe. They can thus steal the details of a bank card that the victim is using to buy something on that site.
They have the ability to copy the payment gateway to make it appear legitimate. The victim would believe that he is on an official site, where he is going to make a secure payment to purchase a product. However, it is facing a cyber attack and all your data will end up on a server controlled by hackers.
MakeFrame, the new threat to impersonate payments
The important point is that this type of attack has grown a lot in recent times. In fact today we echo a report presented by RisKIQ that mentions a new Skimmer called MakeFrame. Basically what it does is inject iFrames into web pages to impersonate payment details.
This new campaign has attacked at least 19 e-commerce websites . All of them have been attacked in order to steal the bank details of their clients. When a user goes to pay by card, that information ends up in the hands of cyber criminals.
These attacks have been attributed to a cyber group called Magecart. They usually work the same way and their technique is based on injecting malicious JavaScript Skimmers into the payment forms.
It is not new, since Magecart are actually several groups that have carried out similar attacks on other occasions. It should be mentioned that on previous occasions they have attacked important companies, not just small companies or pages.
In short, we can say that iFrame Skimmers attacks are very present today. It is something that has grown in recent times and as we see with the case of which we echo has affected numerous websites.
