In a recent coordinated international operation led by Greece, law enforcement authorities from 17 countries have unearthed a startling revelation: more than 400 online merchants have been infected with digital skimmers. These malicious tools, also known as malware, are covertly injected into legitimate websites with the intent to pilfer personal and card information from unsuspecting customers. This discovery highlights the persistent threat posed by cybercriminals and the ongoing battle to safeguard online transactions.
Coordinated International Operation
As part of the operation, authorities diligently went through an exhaustive process to identify and notify more than 400 online merchants about their skimmer infections. This concerted effort aims to raise awareness among merchants and users alike, enabling them to take necessary steps to mitigate the risks associated with these insidious cyber attacks.
Identification of New Digital Skimmers
The operation also yielded valuable results, leading to the identification of two dozen new digital skimmers. These skimmers, categorized as distinct malware families, add to the ever-growing arsenal used by cybercriminals to prey upon unsuspecting victims. Each new discovery brings added urgency to the fight against digital skimming, necessitating ongoing collaboration between law enforcement authorities and cybersecurity experts.
Understanding Digital Skimmers
Digital skimmers are sophisticated pieces of malware that infiltrate legitimate websites, clandestinely siphoning off sensitive personal and payment card information from customers. These malware families are embedded within the website’s code, often evading detection by traditional security measures. Once activated, they silently collect the user’s data, exposing them to identity theft and financial fraud.
Number of Known Digital Skimmer Families
According to cybersecurity firm Group-IB, there are currently 132 known digital skimmer families. This staggering number highlights the evolving complexity and diversity of these malicious tools, underscoring the pressing need for continued research and proactive defense mechanisms to counteract their proliferation.
Specific Skimmers Identified in the Operation
The international operation enabled authorities to identify specific skimmers that are actively used by cybercriminals. Among these are AngryBeaver, ATMZOW, FirstKiss, FakeGA, health_check, Inter, and R3nin. Each skimmer represents a unique method employed by cybercriminals to exploit vulnerabilities and extract sensitive data from infected websites.
The process of digital skimming operates by surreptitiously extracting credit card or payment information when customers engage in online purchases from compromised websites. Unbeknownst to the users, their data is silently intercepted during the payment process, providing cybercriminals with ample opportunities for illicit financial gain.
The Stealthiness of Digital Skimming
One of the most concerning aspects of digital skimming is its ability to go undetected for extended periods. Due to the stealthy nature of this malware, merchants and users may remain unaware of the compromise until significant damage has been done. Stolen payment card data is usually sold on underground marketplaces or exploited by fraudsters for unauthorized transactions, resulting in severe financial loss and personal distress.
Validation of Stolen Credit Card Data
To ensure the viability and profitability of their illicit operations, cybercriminals employ illegal services that validate the authenticity and usability of stolen credit card data. This additional layer of verification enables them to filter out non-working cards and focus their fraudulent activities on legitimate accounts, further compounding the challenges faced by law enforcement agencies combating cybercrime.
Recent Indictment of a Russian National
Highlighting the impact of these illicit services, authorities in the United States recently charged a Russian national for operating a service specifically designed to verify the validity of stolen credit card data. Encompassing a vast network, it is estimated that this service checked millions of cards annually. This case underscores the international nature of cybercrime and the need for global cooperation to bring offenders to justice.
The discovery of over 400 infected online merchants through the international operation serves as a stark reminder of the persistent threats posed by digital skimming. While law enforcement authorities and cybersecurity experts engage in an ongoing battle against these malware families, the protection of online transactions remains paramount. Continuous collaboration, increased awareness among merchants and customers, and the implementation of robust security measures are vital in safeguarding against the ever-evolving techniques employed by cybercriminals. Only through joint efforts can we fortify the digital landscape and foster secure online transactions for all.