Analyzing WooCommerce Credit Card Skimmer

Analyzing a WooCommerce Credit Card Skimmer

The number of credit card skimmers targeting WooCommerce websites has skyrocketed over the past year, and threat actors have become increasingly creative in the different ways they obfuscate their payloads to avoid traditional detection. During a recent investigation for an infected WordPress website, Sucuri discovered an obfuscated credit card stealer hiding amongst the website’s theme files which was exfiltrating stolen credit card details from the WooCommerce plugin. This blog dives into how they identified the skimmer and analyzed its malicious behavior.

Analyzing WooCommerce Credit Card Skimmer
Scroll to top
× How can I help you? Available from 08:00 to 22:00