This article is presented for informational purposes only and does not constitute a call to action. All information is aimed at protecting readers from illegal actions.
A new Malwarebytes report reveals one such group that has taken web skimming to the next level. Experts identified it during the investigation of a series of strange hacks, during which the only thing hackers did on the compromised resources was to change favicons (website icons).
The owners of one such hacked site visited MyIcons.net and saw that it was a complete icon hosting portal. Nothing aroused their suspicions. Nevertheless, as Malwarebytes experts have discovered, MyIcons.net is a clone of the legitimate IconArchive.com portal, designed to mask malicious activity.
Building an entire hosting portal is something new for web skimmers, although the technique has long been used by groups specializing in other types of cybercrime.
ORIGINAL PAGE –