CyberNews Briefs

Savvy Hacker Exploit Analytics Code Used By Thousands of Websites To Capture Data

Hackers have breached analytics service Picreel and open-source project Alpaca Forms and have modified JavaScript files on the infrastructure of these two companies to embed malicious code on over 4,600 websites, security researchers have told ZDNet.

The attack is ongoing, and the malicious scripts are still live, at the time of this article’s publishing.

The malicious code logs all content users enter inside form fields and sends the information to a server located in Panama. This includes data that users enter on checkout/payment pages, contact forms, and login sections.

Today’s attack is different because it is quite generic, targeting every form field on a website, regardless of purpose.

For more see: ZDnet

 

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.