International Operation Discovers Over 400 Online Merchants Infected with Skimmers

In a recent coordinated international operation led by Greece, law enforcement authorities from 17 countries have unearthed a startling revelation: more than 400 online merchants have been infected with digital skimmers. These malicious tools, also known as malware, are covertly injected into legitimate websites with the intent to pilfer personal and card information from unsuspecting customers. This discovery highlights the persistent threat posed by cybercriminals and the ongoing battle to safeguard online transactions.

Coordinated International Operation

As part of the operation, authorities diligently went through an exhaustive process to identify and notify more than 400 online merchants about their skimmer infections. This concerted effort aims to raise awareness among merchants and users alike, enabling them to take necessary steps to mitigate the risks associated with these insidious cyber attacks.

Identification of New Digital Skimmers

The operation also yielded valuable results, leading to the identification of two dozen new digital skimmers. These skimmers, categorized as distinct malware families, add to the ever-growing arsenal used by cybercriminals to prey upon unsuspecting victims. Each new discovery brings added urgency to the fight against digital skimming, necessitating ongoing collaboration between law enforcement authorities and cybersecurity experts.

Understanding Digital Skimmers

Digital skimmers are sophisticated pieces of malware that infiltrate legitimate websites, clandestinely siphoning off sensitive personal and payment card information from customers. These malware families are embedded within the website’s code, often evading detection by traditional security measures. Once activated, they silently collect the user’s data, exposing them to identity theft and financial fraud.

Number of Known Digital Skimmer Families

According to cybersecurity firm Group-IB, there are currently 132 known digital skimmer families. This staggering number highlights the evolving complexity and diversity of these malicious tools, underscoring the pressing need for continued research and proactive defense mechanisms to counteract their proliferation.

Specific Skimmers Identified in the Operation

The international operation enabled authorities to identify specific skimmers that are actively used by cybercriminals. Among these are AngryBeaver, ATMZOW, FirstKiss, FakeGA, health_check, Inter, and R3nin. Each skimmer represents a unique method employed by cybercriminals to exploit vulnerabilities and extract sensitive data from infected websites.

The process of digital skimming operates by surreptitiously extracting credit card or payment information when customers engage in online purchases from compromised websites. Unbeknownst to the users, their data is silently intercepted during the payment process, providing cybercriminals with ample opportunities for illicit financial gain.

The Stealthiness of Digital Skimming

One of the most concerning aspects of digital skimming is its ability to go undetected for extended periods. Due to the stealthy nature of this malware, merchants and users may remain unaware of the compromise until significant damage has been done. Stolen payment card data is usually sold on underground marketplaces or exploited by fraudsters for unauthorized transactions, resulting in severe financial loss and personal distress.

Validation of Stolen Credit Card Data

To ensure the viability and profitability of their illicit operations, cybercriminals employ illegal services that validate the authenticity and usability of stolen credit card data. This additional layer of verification enables them to filter out non-working cards and focus their fraudulent activities on legitimate accounts, further compounding the challenges faced by law enforcement agencies combating cybercrime.

Recent Indictment of a Russian National

Highlighting the impact of these illicit services, authorities in the United States recently charged a Russian national for operating a service specifically designed to verify the validity of stolen credit card data. Encompassing a vast network, it is estimated that this service checked millions of cards annually. This case underscores the international nature of cybercrime and the need for global cooperation to bring offenders to justice.

The discovery of over 400 infected online merchants through the international operation serves as a stark reminder of the persistent threats posed by digital skimming. While law enforcement authorities and cybersecurity experts engage in an ongoing battle against these malware families, the protection of online transactions remains paramount. Continuous collaboration, increased awareness among merchants and customers, and the implementation of robust security measures are vital in safeguarding against the ever-evolving techniques employed by cybercriminals. Only through joint efforts can we fortify the digital landscape and foster secure online transactions for all.

Explore more

Ethereum’s Fragile Recovery Faces Resistance and Low Demand

The Ethereum ecosystem is currently navigating a treacherous landscape where price action struggles to align with the technical milestones achieved during the most recent network upgrades. While the shift to a more scalable architecture was intended to invite a surge of institutional and retail capital, the reality in 2026 shows a market plagued by indecision and a noticeable lack of

macOS 28 Drops Support for Encrypted Mac OS Extended Volumes

The landscape of digital storage has shifted dramatically over the past decade, leaving legacy file systems struggling to keep pace with the rigorous security demands of modern computing environments. With the release of macOS 28, the long-standing compatibility for encrypted Mac OS Extended (HFS+) volumes has officially reached its end of life, signaling a definitive transition toward the more robust

CapCut Named 2026 Leader in AI Social Media Content Creation

The rapid evolution of generative artificial intelligence has fundamentally altered the digital landscape, shifting the burden of high-quality video production from specialized studios to the palm of every creator’s hand across the globe. By mid-2026, the demand for short-form content reached an all-time high, necessitating tools that could keep pace with the volatile trends of social media algorithms. CapCut emerged

How Will AI and RPA Shape Desktop Automation in 2026?

The integration of cognitive computing with traditional robotic process automation has fundamentally altered the way desktop environments operate across global industries today. No longer confined to the rigid, rule-based scripts of previous cycles, modern automation tools now serve as dynamic, goal-oriented assistants capable of navigating the intricacies of fragmented software landscapes. This shift has allowed organizations to bridge the significant

UiPath Navigates AI Pivot Amid Market Skepticism

The transition from legacy robotic process automation to a sophisticated, agent-centric architecture has forced enterprise software giants to fundamentally rethink their value propositions in an era defined by autonomous reasoning. This paradigm shift represents more than a mere software update; it is a complete structural overhaul that seeks to bridge the gap between simple task execution and complex cognitive decision-making.