Hackers are hiding virtual credit card skimmers in image file metadata

added 27.06.2020 18:19

by Login from engadget.com
Image of article 'Hackers are hiding virtual credit card skimmers in image file metadata'

Lots of people know to check ATMs and gas station credit card readers for skimmers, but it’s harder to tell when virtual ones are hidden them in websites’ payment portals.

According to research from Malwarebytes, hackers put Magecart JavaScript code into the EXIF metadata of image files, which is then loaded and executed by compromised stores.

Hiding malicious code inside of images is nothing new, but it’s the first time security researchers have seen them used to obscure credit card skimmers.

A recent trend among hackers has been to hide malicious code in favicons -- those icons you see in the corner of a browser tab.

When loaded, it grabs payment information, such as the customer’s name, address and credit card details.