International Operation Discovers Over 400 Online Merchants Infected with Skimmers

In a recent coordinated international operation led by Greece, law enforcement authorities from 17 countries have unearthed a startling revelation: more than 400 online merchants have been infected with digital skimmers. These malicious tools, also known as malware, are covertly injected into legitimate websites with the intent to pilfer personal and card information from unsuspecting customers. This discovery highlights the persistent threat posed by cybercriminals and the ongoing battle to safeguard online transactions.

Coordinated International Operation

As part of the operation, authorities diligently went through an exhaustive process to identify and notify more than 400 online merchants about their skimmer infections. This concerted effort aims to raise awareness among merchants and users alike, enabling them to take necessary steps to mitigate the risks associated with these insidious cyber attacks.

Identification of New Digital Skimmers

The operation also yielded valuable results, leading to the identification of two dozen new digital skimmers. These skimmers, categorized as distinct malware families, add to the ever-growing arsenal used by cybercriminals to prey upon unsuspecting victims. Each new discovery brings added urgency to the fight against digital skimming, necessitating ongoing collaboration between law enforcement authorities and cybersecurity experts.

Understanding Digital Skimmers

Digital skimmers are sophisticated pieces of malware that infiltrate legitimate websites, clandestinely siphoning off sensitive personal and payment card information from customers. These malware families are embedded within the website’s code, often evading detection by traditional security measures. Once activated, they silently collect the user’s data, exposing them to identity theft and financial fraud.

Number of Known Digital Skimmer Families

According to cybersecurity firm Group-IB, there are currently 132 known digital skimmer families. This staggering number highlights the evolving complexity and diversity of these malicious tools, underscoring the pressing need for continued research and proactive defense mechanisms to counteract their proliferation.

Specific Skimmers Identified in the Operation

The international operation enabled authorities to identify specific skimmers that are actively used by cybercriminals. Among these are AngryBeaver, ATMZOW, FirstKiss, FakeGA, health_check, Inter, and R3nin. Each skimmer represents a unique method employed by cybercriminals to exploit vulnerabilities and extract sensitive data from infected websites.

The process of digital skimming operates by surreptitiously extracting credit card or payment information when customers engage in online purchases from compromised websites. Unbeknownst to the users, their data is silently intercepted during the payment process, providing cybercriminals with ample opportunities for illicit financial gain.

The Stealthiness of Digital Skimming

One of the most concerning aspects of digital skimming is its ability to go undetected for extended periods. Due to the stealthy nature of this malware, merchants and users may remain unaware of the compromise until significant damage has been done. Stolen payment card data is usually sold on underground marketplaces or exploited by fraudsters for unauthorized transactions, resulting in severe financial loss and personal distress.

Validation of Stolen Credit Card Data

To ensure the viability and profitability of their illicit operations, cybercriminals employ illegal services that validate the authenticity and usability of stolen credit card data. This additional layer of verification enables them to filter out non-working cards and focus their fraudulent activities on legitimate accounts, further compounding the challenges faced by law enforcement agencies combating cybercrime.

Recent Indictment of a Russian National

Highlighting the impact of these illicit services, authorities in the United States recently charged a Russian national for operating a service specifically designed to verify the validity of stolen credit card data. Encompassing a vast network, it is estimated that this service checked millions of cards annually. This case underscores the international nature of cybercrime and the need for global cooperation to bring offenders to justice.

The discovery of over 400 infected online merchants through the international operation serves as a stark reminder of the persistent threats posed by digital skimming. While law enforcement authorities and cybersecurity experts engage in an ongoing battle against these malware families, the protection of online transactions remains paramount. Continuous collaboration, increased awareness among merchants and customers, and the implementation of robust security measures are vital in safeguarding against the ever-evolving techniques employed by cybercriminals. Only through joint efforts can we fortify the digital landscape and foster secure online transactions for all.

Explore more

Can a Unified ERP System Future-Proof Levi Strauss?

Establishing a seamless digital environment for a brand that spans over a hundred nations is a monumental undertaking that requires more than just standard software updates. Currently, Levi Strauss & Co. is navigating a profound transformation of its digital infrastructure, aiming for a mid-2027 completion of a fully integrated global enterprise resource planning system. This strategic overhaul is not merely

Ethereum Faces $10 Billion Liquidation Risk Near $2,000

The current trajectory of Ethereum suggests a massive collision between aggressive retail speculation and sophisticated institutional sell-side pressure as the asset hovers near the $2,000 psychological threshold. This specific price point has historically served as a pivot for broader market sentiment, influencing the behavior of various decentralized finance protocols and secondary layer-two scaling solutions. Currently, the market exhibits a state

ClickLock Malware Coerces macOS Users to Surrender Passwords

Traditional macOS security architectures have long been celebrated for their robust sandboxing and gated execution, yet a new strain of malware is proving that the human element remains the most vulnerable entry point in any digital ecosystem. This threat, known as ClickLock, has emerged as a particularly aggressive evolution in the macOS threat landscape by prioritizing psychological pressure and social

Stalled Windows 11 Migration Poses Growing Security Risks

The global landscape of enterprise computing is currently grappling with a persistent digital divide as a significant segment of users continues to rely on Windows 10 despite the availability of more secure alternatives. The current ecosystem of digital infrastructure remains tethered to legacy architecture, with recent telemetry indicating that approximately one in six workstations worldwide continues to operate on Windows

How Is OpenAI Redefining AI With Precision Engineering?

The shift from experimental conversationalists to precise engineering tools has fundamentally altered the landscape of digital productivity and high-performance computing in 2026. This transition is marked by a move away from the early excitement surrounding generative models toward a rigorous framework centered on deep optimization and granular control. OpenAI has spearheaded this movement with the introduction of the GPT-5.6 Sol