Threat Actors Abusing 404 Pages to Hide Card Stealing Malware

A web skimming campaign targeting food and retail industry organizations has been uncovered. The attack, which targets both Magento and WooCommerce websites, includes three advanced concealment strategies. One such strategy involved using a site’s 404 error page to hide malicious code. The other two methodologies involve obfuscation techniques. The web skimming attack allows threat actors to insert malicious code into a website and extract data from an HTML form when it is filled by users.