In a recent cyberattack, the Casio UK online store fell victim to a sophisticated web-skimming campaign, compromising sensitive customer information. This breach highlights the ongoing vulnerabilities in e-commerce platforms and the evolving tactics of cybercriminals.
Between January 14 and 24, 2025, malicious scripts were injected into the Casio UK website, targeting customer credit cards and personal information, discovered by Jscrambler researchers on January 28, who promptly notified Casio UK.
The attackers used a web skimmer that intercepted user interactions on the cart page, redirecting them to a fake payment form designed to mimic legitimate processes. This form collected billing addresses, credit card details, phone numbers, and email addresses before exfiltrating the data to a command-and-control server hosted in Russia.
The malicious code was removed within 24 hours, but not before significant data had been compromised. This incident is part of a larger campaign affecting at least 17 websites running vulnerable components on Magento or similar e-commerce platforms.
Cybersecurity firms have been working closely with affected organizations to remove the infections and strengthen their defenses. Casio UK has implemented stricter security measures, including updating their Content Security Policy (CSP) to actively block malicious scripts. Additionally, law enforcement agencies are collaborating internationally to trace and dismantle the infrastructure supporting these web-skimming operations.
#CyTech #CyTechNewsRoom #Cybersecurity #CISO #CISOWorkplace #VulnerabilityAssesment #CIM #WebSkimming #CasioUK
Leave a Reply