<ul><li>Researchers have discovered that old Stripe APIs are being hijacked by cybercriminals to process fraudulent credit card payments on compromised ecommerce websites.</li><li>At least 49 ecommerce sites have been compromised so far, and the actual number of victims is expected to be higher.</li><li>Attackers inject malicious JavaScript code into the compromised websites, overlaying the legitimate checkout page with a fake one to harvest payment information.</li><li>To mitigate the risk, users are advised to migrate to the newer Stripe API as the deprecated one is being exploited by cybercriminals.</li></ul>

Old Stripe APIs are being hijacked for credit card skimmer attacks

Discover more