yamaci17 Posted June 23, 2020 ID:1389748 Share Posted June 23, 2020 (edited) https://www.teknobiyotik.com/donanim/islemci-cpu/intel-core-i7-10700k-3-8ghz-turbo-5-1ghz-16mb-cache-lga1200-comet-lake-10-nesil-islemci.html https://www.teknobiyotik.com/donanim/islemci-cpu/intel-core-i7-10700f-2-9ghz-turbo-4-8ghz-16mb-cache-lga1200-comet-lake-10-nesil-islemci.html can't enter a local reliable retailer store website because of this detection any insights on this? is the website really infected_? Edited June 23, 2020 by Zynthesist Remove links Link to post Share on other sites More sharing options...
Staff Solution Zynthesist Posted June 23, 2020 Staff Solution ID:1389751 Share Posted June 23, 2020 Hello, Please do not post live links. This domain contains a web skimmer. Please see this article for further details: https://securelist.com/web-skimming-with-google-analytics/97414/ Link to post Share on other sites More sharing options...
yamaci17 Posted June 23, 2020 Author ID:1389756 Share Posted June 23, 2020 5 minutes ago, Zynthesist said: Hello, Please do not post live links. This domain contains a web skimmer. Please see this article for further details: https://securelist.com/web-skimming-with-google-analytics/97414/ how should i proceed my friend? i purchased many products from this website with my bank card. should i disable my card and change all my passwords? a huge percentage of turkish users use this website to buy products. to this day, no such detection happened, is this recently added by the website? should I try to raise awareness in local tech forum against this? --- are you absouletely sure that this is not a false positive? Link to post Share on other sites More sharing options...
Staff Zynthesist Posted June 23, 2020 Staff ID:1389758 Share Posted June 23, 2020 Hello, Yes I would take precautionary steps related to payment methods and information used on the site. I have just re-verified and the skimmer is still active. Link to post Share on other sites More sharing options...
Staff Zynthesist Posted June 23, 2020 Staff ID:1389759 Share Posted June 23, 2020 (edited) Moe info here: https://www.bleepingcomputer.com/news/security/hackers-use-google-analytics-to-steal-credit-cards-bypass-csp/ https://www.perimeterx.com/tech-blog/2020/bypassing-csp-exflitrate-data/ Edited June 23, 2020 by Zynthesist Link to post Share on other sites More sharing options...
yamaci17 Posted June 23, 2020 Author ID:1389760 Share Posted June 23, 2020 1 minute ago, Zynthesist said: Moe info here: https://www.bleepingcomputer.com/news/security/hackers-use-google-analytics-to-steal-credit-cards-bypass-csp/ https://www.perimeterx.com/tech-blog/2020/bypassing-csp-exflitrate-data/ Thanks, i will have my debit card disabled and get a new one. Should I also change all my passwords? I use different passwords for every website. Or can I just ignore the website and continue to web browsing? Am I infected in a general sense? Is it possible that they also stole my other password typings with trojan, keylogger or something, how can I be sure? I'm utilizing malwarebytes for 2 years but never had a problem with this website. Why not before, why now? Is it possible that they added the skimmer today? Link to post Share on other sites More sharing options...
Staff Zynthesist Posted June 23, 2020 Staff ID:1389761 Share Posted June 23, 2020 This specific type of skimmer campaign is a novel one. I would recommend changing passwords as a precaution yes. Link to post Share on other sites More sharing options...
yamaci17 Posted June 23, 2020 Author ID:1389764 Share Posted June 23, 2020 3 minutes ago, Zynthesist said: This specific type of skimmer campaign is a novel one. I would recommend changing passwords as a precaution yes. how can I make sure new passwords will not be stolen? is a full mbam scan is enough or should i install my windows againt dont know what to do rn or why do you suggest changing other passwords since they are different from teknobiyotik.com? Link to post Share on other sites More sharing options...
Staff Zynthesist Posted June 23, 2020 Staff ID:1389765 Share Posted June 23, 2020 Not suggesting you do but some people use the same passwords for different sites/services. Link to post Share on other sites More sharing options...
yamaci17 Posted June 23, 2020 Author ID:1389766 Share Posted June 23, 2020 Just now, Zynthesist said: Not suggesting you do but some people use the same passwords for different sites/services. oh i see, but i already said i use different passwords for every site i sign up i dont even employ google passwords manager, i have my passwords written on a special notebook of mine, and i type them hand by hand everytime (i dont trust any kind of password managers also) so if i'm using different passwords, i'm okay i guess? Link to post Share on other sites More sharing options...
Staff Zynthesist Posted June 23, 2020 Staff ID:1389770 Share Posted June 23, 2020 Thanks for contacting us. Link to post Share on other sites More sharing options...
Recommended Posts