WordPress Credit Card Skimmers Evade Detection by Injecting Themselves into Database Tables

Cybersecurity researchers are warning of a new stealthy credit card skimmer campaign that targets #WordPress e-commerce checkout pages by inserting malicious JavaScript code into a database table associated with the content management system (CMS).

thehackernews.com/2025/01/word…

WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables

Malicious JavaScript in WordPress checkout pages steals payment data, hides in wp_options, and exfiltrates encrypted details.

^{The Hacker News}