Jump directly to the content
WATCH OUT

Microsoft warning as scammers could skim your credit card with online checkout trick – how to stay safe

MICROSOFT has issued an important warning over a malware scam that can steal your credit card information.

The latest techniques employed by hackers are more subtle than past card skimming schemes, the company warned.

Credit card skimming plots target assistive web browsers used by online shoppers
2
Credit card skimming plots target assistive web browsers used by online shoppersCredit: Getty Images - Getty
Never turn over your credit card information online unless your certain the site is legitimate
2
Never turn over your credit card information online unless your certain the site is legitimateCredit: Alamy

Web skimming is a hacking term for using code to scan a webpage for payment information.

Microsoft said that web skimming attempts are normally deployed against browser platforms like "Magento, PrestaShop and WordPress" because of their widespread use and connection to e-commerce.

In November 2021, a malicious bug was planted into a Magento server that would automatically search for the terms "checkout" and "one page" in search of credit card data.

The FBI said hackers were "sending the scraped data to an actor-controlled server that spoofed a legitimate card processing server."

Read More in Microsoft

TAKING SIDES

Microsoft warning - company allegedly HIDING info 'to appease Chinese censors'

HACK ATTACK

Microsoft issues official warning for BILLIONS as 74 security flaws found

The latest version of the scam involves writing a "PHP script" into the server.

The bit of code will sit silently and idly until it has determined that the site's administrators are not logged in, according to .

"Based on previous similar attacks, we believe that the attacker used a PHP 'include' expression to include the image (that contains the PHP code) in the website's index page, so that it automatically loads at every webpage visit," Microsoft wrote in a .

"The impact of web skimming campaigns could translate into monetary loss, reputation damage, and loss of customer trust," Microsoft said.

Most read in Tech

Android fans warned popular phone will no longer receive free upgrades
TIME FOR CHANGE

Android fans warned popular phone will no longer receive free upgrades

Google employee reveals new trick to free up space on your full iPhone
GOOG TO KNOW!

Google employee reveals new trick to free up space on your full iPhone

Virgin Media users can unlock 80 BONUS channels on their TV NOW at no extra cost
TOP TELLY

Virgin Media users can unlock 80 BONUS channels on their TV NOW at no extra cost

Freeview boss reveals key feature your next TV needs or face big streaming bills
TV TIP

Freeview boss reveals key feature your next TV needs or face big streaming bills

Both consumers and retailers have reason for concern.

"Online shoppers can protect themselves from web skimming attacks by ensuring their browser sessions are secure, especially during the checkout process," Microsoft said.

"Be wary of any unexpected or suspicious pop-ups that ask for payment details.";

Read More On The Sun

DEATHLY QUIET

Cyclist's 'killer may have used silencer and stole her bike to stage robbery'

GRISLY DEATH

Daughter makes disturbing claim her missing father was fed to PIGS

The best form of internet protection is a skeptical mind and updated security patches.

Monitor your credit card spending history and keep an eye on the browser's URL when shopping online - if something looks fishy, it probably is.

We pay for your stories!

Do you have a story for The US Sun team?

Email us at [email protected] or call 212 416 4552. Like us on Facebook at  and follow us from our main Twitter account at 

Topics
YOU MIGHT LIKE
RECOMMENDED FOR YOU
MORE FOR YOU