During a routine investigation, we found yet another web skimmer that pretends to be related to Sucuri.

One of our Remediation Analysts, Liam Smith, found the following code injected into the database of a Magento site.

The first 109 lines of the malware don’t contain any content, which could be an attempt to avoid detection and conceal itself from detection, but line #110 contains a  base64-encoded Javascript ( eval(atob(… ).

Continue reading Another Credit Card Stealer That Pretends to Be Sucuri at Sucuri Blog.

Pin It on Pinterest