Hackers are hijacking online stores to display modern, realistic-looking fake payment forms to steal credit cards from unsuspecting customers.These payment forms are shown as a modal, HTML content overlayed on top of the main webpage, allowing the user to interact with login forms or notification content without leaving the page. When modals are active, the background content is sometimes dimmed or blurred to draw attention to the modal content.In a new report by Malwarebytes, MageCart skimmers are now hijacking legitimate online store’s payment pages to show their own fake payment forms as modals to steal customers’ credit cards.These modals stand out because they sometimes look even better than the original, having no visual signs that could cause suspicion that they are not real.
Source: Hackers swap stealth for realistic checkout forms to steal credit cards