The ongoing COVID-19 pandemic has left a profound impact on the payments ecosystem threat landscape throughout 2020 and into 2021. With online shopping witnessing a surge bigger than ever, digital skimming attacks have become a top threat for the payments ecosystem.
A simple digital skimming attack involves injecting malicious code into a merchant’s site to harvest payment card details from the site’s checkout page. However, in the past year, there has been a vast evolution in the injection process and skimmer code as well. To add to the trouble, a new threat actor has emerged lately with new tricks up its sleeve.