Scores of New Zealand online retail sites have been hacked and are infected by credit card skimming software that can steal customers' payment information, a security researcher has found. As unsuspecting customers go to pay for their goods and services, the malware silently copies their credit card details and sends them to a server believed to be in Russia, hosted on a provider known to harbour cyber criminals. A search for .nz on a list of sites published by de Groot and shared with the Herald revealed 47 New Zealand sites that serve up the credit card skimming malware, and 220 in Australia. The Kiwi sites that are infected are mainly small online retailers, as well as sports associations and art galleries. The credit card skimming hack comes after last year's "Shoplift" security scare that left vulnerable Magento sites wideopen to full takeover by attackers.

Source: New Zealand Herald October 13, 2016 22:59 UTC