
image credit: unsplash
Over 100 real estate websites have been compromised by the same web skimmer in a supply chain attack.
So what happened?
On Monday, January 3, Palo Alto said it had found a supply chain attack that used a cloud video platform to distribute skimmer campaigns. The attacker injected the skimmer’s JavaScript code into video files, so whenever someone imported the video, their website would get embedded with the skimmer code as well.