A credit-card skimmer is exclusively targeting websites that are hosted on Microsoft IIS servers and running ASP.NET, the company's web framework for developing web applications and services.
ASP.NET is less common than PHP but still accounts for "a sizeable market share" and includes websites with shopping-cart applications, according to a blost post by Jerome Segura, head of threat intelligence. All of the victim websites had shopping portals, which were the attackers' target. The skimmer is built to look for credit-card numbers and passwords; however, the password-seeking method "appears to be incorrectly implemented," he wrote.
Read more details here.
Check out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's featured story: "The Entertainment Biz Is Changing, but the Cybersecurity Script Is One We've Read Before."