Virtual Conference Platform Targeted by Credit Card Skimmer

October 09, 2020

Virtual Conference Platforms Targeted by Credit Card Skimmer

We all know that there are many ingenious methods to steal money online, and here one of the most sought-after means and objects by hackers is the online credit cards. There are many security incidents affecting different websites simultaneously because they were loading the same tampered piece of code. In many instances, this is due to what we call a supply-chain attack, where a threat actor targets one company that acts as an intermediary to others.

Indicator of Compromise

playbacknows[.]com/playback/index.js

Compromised sites

playbacknar[.]com
naraei[.]playbacknow[.]com
nais[.]playbacknow[.]com
nasmm[.]playbacknow[.]com
tripleplay[.]playbacknow[.]com
digitaldealer[.]playbacknow[.]com
playbackaaj[.]com
playbackacp[.]com
playbacksmilesource[.]com
playbackc21[.]com
playbackada[.]com
playbacknailba[.]com
playbackswana[.]com
playbacknaspa[.]com
playbackaupresses[.]com
playbacknacba[.]com
playbackaca[.]com
playbacknala[.]com
playbacknatp[.]com
iplayback[.]com                –
playbackcore[.]com            –
playbackndsc[.]com
playbackaata[.]com
playbacksnrs[.]com
playbackssp[.]com
playbackcaregiving[.]com
playbackcas[.]com
playbackmpc[.]com
playbackhinman[.]com
playbacknetworker[.]com
playbacknara[.]com
aspcvirtualsummit[.]org
playbackfgs[.]com
playbackifa[.]com
playbackashe[.]com
playbackippfa[.]com
playbackahri[.]com
playbackaonl[.]com
playbackngs[.]com
playbackrlc[.]com
playbackahia[.]com
playbacknacac[.]com

IP

209.126.18.3

Search This Blog

Cyber Drishti

Virtual Conference Platform Targeted by Credit Card Skimmer

Comments

Post a Comment

Popular posts from this blog

Revil Ransomware Targeted Kaseya

BANDOOK(RAT)

Buer Loader provides malware-as-a-service