New Magecart Campaign Abuses 404 Page Not Found Error

A new card skimming campaign discovered by Akamai utilizes 404 error pages on online retailers' websites to hide malicious code and steal customers' credit card information. The stolen data is exfiltrated via seemingly benign image requests, thus evading network monitoring tools. One effective mitigation is to regularly monitor and audit website resources, ensuring that no unauthorized modifications have been made.