• http://www.wewatchyourwebsite.com WeWatch

    One of the many ways we’ve been seeing hackers steal credit card information from websites is that they inject code into the checkout processing files. It might be with the payment processing PHP file or some other program file used in the credit card processing.

    The code they inject copies all the credit card information and sends it via an email to an address where they simply read it from. Then they collect hundreds if not thousands of them and sell them on the black market in batches.

    With file integrity monitoring, this type of “hack” would be detected. Of course, once you’re notified of files being tampered with, you still have to determine how the breach occured.

    Great article!