Talk:Web skimming

Wiki Education assignment: SSC199 Hon
— Assignment last updated by Mmswens (talk) 17:42, 6 December 2022 (UTC)


 * @Mmswens Good luck, if you need any help let me know. PhotographyEdits (talk) 15:04, 30 November 2022 (UTC)

Student assignment
Thanks for your contributen, but I'm afraid the text is not yet ready for mainspace. I'm moving it here temporary.

Added text
Web skimming is one of many hacking techniques where the attacker breaches the payment or checkout page of websites by injecting a malicious script via the third-party apps.

Web skimming, which can also be referred to as digital skimming is a hacking technique that targets digital businesses. Although web skimming has been around for a while now, it really took the center stage back in 2018 after the Magecart attack on British Airways.

With web skimming, it is not as simple as it may seem. There are various methods by which someone could steal valuable information from victims. Two of these methods include direct attacks, which involves planting a skimming code and oftentimes this method is not easy to execute and involves a lot of preplanning and then there are website software supply chain attacks. These attacks are growing in popularity and allow malware to be injected into a trusted third-party hosting site.

Digital skimming seems to be on an upward trend. Everyday there are new breaches, new actors, and hundreds of victims. Based on some recent data it seems that fraud involving physical cards is on a downward trend, while online attacks are on the rise in a substantial way. The same trends that you are reading about now lineup perfectly with what Verizon found in 2019. Though web skimming may sound complicated and scary, there are some ways in which you can protect yourself. The first thing you could do is identify all your third-party eCommerce providers, by doing this it allows scripts to not be uploaded without your permission to do so. The second thing you could do is keep up with your patches to your web server code. By doing this you can ensure that they are enacted and have not been diverted. One of the last measures you could take is to ensure that your cyber insurance covers any losses. Of course there are other ways to prevent web skimming and other attacks on personal information but these are just some that work well and have been used often. PhotographyEdits (talk) 19:44, 14 December 2022 (UTC)