International Operation Discovers Over 400 Online Merchants Infected with Skimmers

In a recent coordinated international operation led by Greece, law enforcement authorities from 17 countries have unearthed a startling revelation: more than 400 online merchants have been infected with digital skimmers. These malicious tools, also known as malware, are covertly injected into legitimate websites with the intent to pilfer personal and card information from unsuspecting customers. This discovery highlights the persistent threat posed by cybercriminals and the ongoing battle to safeguard online transactions.

Coordinated International Operation

As part of the operation, authorities diligently went through an exhaustive process to identify and notify more than 400 online merchants about their skimmer infections. This concerted effort aims to raise awareness among merchants and users alike, enabling them to take necessary steps to mitigate the risks associated with these insidious cyber attacks.

Identification of New Digital Skimmers

The operation also yielded valuable results, leading to the identification of two dozen new digital skimmers. These skimmers, categorized as distinct malware families, add to the ever-growing arsenal used by cybercriminals to prey upon unsuspecting victims. Each new discovery brings added urgency to the fight against digital skimming, necessitating ongoing collaboration between law enforcement authorities and cybersecurity experts.

Understanding Digital Skimmers

Digital skimmers are sophisticated pieces of malware that infiltrate legitimate websites, clandestinely siphoning off sensitive personal and payment card information from customers. These malware families are embedded within the website’s code, often evading detection by traditional security measures. Once activated, they silently collect the user’s data, exposing them to identity theft and financial fraud.

Number of Known Digital Skimmer Families

According to cybersecurity firm Group-IB, there are currently 132 known digital skimmer families. This staggering number highlights the evolving complexity and diversity of these malicious tools, underscoring the pressing need for continued research and proactive defense mechanisms to counteract their proliferation.

Specific Skimmers Identified in the Operation

The international operation enabled authorities to identify specific skimmers that are actively used by cybercriminals. Among these are AngryBeaver, ATMZOW, FirstKiss, FakeGA, health_check, Inter, and R3nin. Each skimmer represents a unique method employed by cybercriminals to exploit vulnerabilities and extract sensitive data from infected websites.

The process of digital skimming operates by surreptitiously extracting credit card or payment information when customers engage in online purchases from compromised websites. Unbeknownst to the users, their data is silently intercepted during the payment process, providing cybercriminals with ample opportunities for illicit financial gain.

The Stealthiness of Digital Skimming

One of the most concerning aspects of digital skimming is its ability to go undetected for extended periods. Due to the stealthy nature of this malware, merchants and users may remain unaware of the compromise until significant damage has been done. Stolen payment card data is usually sold on underground marketplaces or exploited by fraudsters for unauthorized transactions, resulting in severe financial loss and personal distress.

Validation of Stolen Credit Card Data

To ensure the viability and profitability of their illicit operations, cybercriminals employ illegal services that validate the authenticity and usability of stolen credit card data. This additional layer of verification enables them to filter out non-working cards and focus their fraudulent activities on legitimate accounts, further compounding the challenges faced by law enforcement agencies combating cybercrime.

Recent Indictment of a Russian National

Highlighting the impact of these illicit services, authorities in the United States recently charged a Russian national for operating a service specifically designed to verify the validity of stolen credit card data. Encompassing a vast network, it is estimated that this service checked millions of cards annually. This case underscores the international nature of cybercrime and the need for global cooperation to bring offenders to justice.

The discovery of over 400 infected online merchants through the international operation serves as a stark reminder of the persistent threats posed by digital skimming. While law enforcement authorities and cybersecurity experts engage in an ongoing battle against these malware families, the protection of online transactions remains paramount. Continuous collaboration, increased awareness among merchants and customers, and the implementation of robust security measures are vital in safeguarding against the ever-evolving techniques employed by cybercriminals. Only through joint efforts can we fortify the digital landscape and foster secure online transactions for all.

Explore more

Ethereum Uses AI Swarms to Proactively Patch Network Flaws

The architectural integrity of global decentralized networks has reached a pivotal juncture where the speed of malicious exploitation often outpaces the traditional cadence of human-led security audits. To address this widening gap, The Ethereum Foundation has fundamentally transitioned its security strategy from a reactive model to an automated, proactive defense paradigm that leverages the power of machine learning. This shift

How Is ERP Modernization Driving DLA to Audit Readiness?

The Defense Logistics Agency currently manages an intricate global supply chain that serves as the backbone for the United States military, requiring an unprecedented level of financial precision and operational transparency to meet modern oversight requirements. This massive undertaking involves a transition from aging, siloed legacy systems to a unified Enterprise Resource Planning environment designed to provide real-time visibility into

What Makes Odyssey Infostealer a Global Threat to macOS?

The long-standing myth that macOS remains immune to sophisticated cyberattacks has been decisively shattered by the emergence of the Odyssey infostealer, a highly specialized malware variant engineered to bypass modern system integrity protections. This transition represents a fundamental shift in the threat landscape, where the historical security-by-obscurity advantage once enjoyed by Apple users has entirely vanished. As the adoption of

Can AI Secure Windows Without Compromising Stability?

The sheer scale of modern software development has reached a point where manual code review is no longer sufficient to protect the billions of devices running Windows across the globe. As lines of code multiply and interdependencies become more complex, traditional security measures are struggling to keep pace with the rapid evolution of sophisticated digital threats. In response to this

Xero Launches JAX to Redefine Accounting with Agentic AI

Small business owners have historically spent an exhausting amount of time tethered to spreadsheets and receipts, but the emergence of agentic AI is finally turning those static records into a living, breathing financial command center that operates with minimal human oversight. With more than five million global subscribers now integrated into its ecosystem, Xero is spearheading a movement toward Accountable