The American Cancer Society (ACS) has fallen victim to the latest credit card skimming malware. A similar scheme has already targeted big businesses like British Airways and Ticketmaster. Security researcher Willem de Groot found the code embedded in the storefront’s code. The code was designed to look like normal analytics, but instead searched the “checkout” for credit card user information and then re-routed payment to a third-party. Credit card information was then sold off on the dark web or utilized by the hacker to commit various types of fraud.
Thankfully, the hack was exposed and corrected in just a few days. The hacker’s web address for their third-party server was obtained. Anyone who made recent purchases on the ACS website should contact their credit card company and verify their information is secured.