Operation Silent Skimmer
0 incidentes
0 paises
0 sectores
apt CN Ultimo: -
Operation Silent Skimmer is a financially motivated cybercrime group assessed to be of Chinese origin that emerged around late 2022. The group focuses on compromising online payment businesses and point-of-sale (PoS) systems to steal credit card information. Initially, their campaigns involved injecting malicious code into payment pages, but they have evolved their tactics to include directly accessing payment databases via compiled Python scripts, demonstrating an adaptability in their approach. A distinctive characteristic is their strategic adjustment of command and control infrastructure based on victim geolocation to evade detection. They are notable for exploiting vulnerabilities in third-party web application components, such as Telerik UI, to gain initial access.