Jump to content

Local retailer blocked because of Hijack?


Go to solution Solved by Zynthesist,

Recommended Posts

wtf1.thumb.png.1693c787f87f178a866b24a5e5b14abe.pnghttps://www.teknobiyotik.com/donanim/islemci-cpu/intel-core-i7-10700k-3-8ghz-turbo-5-1ghz-16mb-cache-lga1200-comet-lake-10-nesil-islemci.html

https://www.teknobiyotik.com/donanim/islemci-cpu/intel-core-i7-10700f-2-9ghz-turbo-4-8ghz-16mb-cache-lga1200-comet-lake-10-nesil-islemci.html

 

can't enter a local reliable retailer store website because of this detection

any insights on this? is the website really infected_?

 

Edited by Zynthesist
Remove links
Link to post
Share on other sites
  • Solution

Hello, 

Please do not post live links. 

This domain contains a web skimmer. Please see this article for further details:

https://securelist.com/web-skimming-with-google-analytics/97414/

 

Link to post
Share on other sites
5 minutes ago, Zynthesist said:

Hello, 

Please do not post live links. 

This domain contains a web skimmer. Please see this article for further details:


https://securelist.com/web-skimming-with-google-analytics/97414/

 

how should i proceed my friend? i purchased many products from this website with my bank card. should i disable my card and change all my passwords? 

a huge percentage of turkish users use this website to buy products. to this day, no such detection happened, is this recently added by the website?

should I try to raise awareness in local tech forum against this?

---

are you absouletely sure that this is not a false positive? 

Link to post
Share on other sites

Hello,

Yes I would take precautionary steps related to payment methods and information used on the site. I have just re-verified and the skimmer is still active. 

 

Link to post
Share on other sites

Moe info here: 

https://www.bleepingcomputer.com/news/security/hackers-use-google-analytics-to-steal-credit-cards-bypass-csp/
https://www.perimeterx.com/tech-blog/2020/bypassing-csp-exflitrate-data/

 

Edited by Zynthesist
Link to post
Share on other sites
1 minute ago, Zynthesist said:

Moe info here: 


https://www.bleepingcomputer.com/news/security/hackers-use-google-analytics-to-steal-credit-cards-bypass-csp/

https://www.perimeterx.com/tech-blog/2020/bypassing-csp-exflitrate-data/

 

Thanks, i will have my debit card disabled and get a new one.

 

Should I also change all my passwords? I use different passwords for every website.  Or can I just ignore the website and continue to web browsing? Am I infected in a general sense?

Is it possible that they also stole my other password typings with trojan, keylogger or something, how can I be sure?

I'm utilizing malwarebytes for 2 years but never had a problem with this website. Why not before, why now? Is it possible that they added the skimmer today?

Link to post
Share on other sites
3 minutes ago, Zynthesist said:

This specific type of skimmer campaign is a novel one. I would recommend changing passwords as a precaution yes.

how can I make sure new passwords will not be stolen? is a full mbam scan is enough or should i install my windows againt dont know what to do rn or why do you suggest changing other passwords since they are different from teknobiyotik.com?

 

 

Link to post
Share on other sites
Just now, Zynthesist said:

Not suggesting you do but some people use the same passwords for different sites/services. 

oh i see, but i already said i use different passwords for every site i sign up

i dont even employ google passwords manager, i have my passwords written on a special notebook of mine, and i type them hand by hand everytime (i dont trust any kind of password managers also)

so if i'm using different passwords, i'm okay i guess? 

 

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.