Threat investigators are alerting to a complex web skimmer operation that utilizes an outdated application programming interface (API) from payment processor Stripe to verify pilfered payment details before extraction.
“This strategy guarantees that only legitimate card information is transmitted to the assailants, enhancing the operation’s efficiency and possibly complicating detection,” stated Jscrambler researcher Pedro.