Crime without punishment: in-depth analysis of JS-sniffers

JS-sniffers pose a growing threat by attacking online stores and stealing payment data and credentials of their users. Group-IB experts have researched this type of malware and have discovered at least 38 families of JS-sniffers, whereas only 12 were known previously.

Request Try Threat Intelligence

Key facts

Group-IB experts have discovered 38 different JS-sniffer families, whereas only 12 were known previously

The total daily number of visitors of all the infected sites exceeds 1.5 million people

By selling compromised payment data cybercriminals can earn from $1 to $5 per card

JS-sniffers can be bought or rented on underground forums, with their price ranging from $250 to $5,000

This class of malware seemed to be a rather primitive threat to large players like banks and payment systems, since JS-sniffers were believed to target small online stores. Now, however, it is time to question that belief. When a site is infected, everyone is involved in the chain of victims — end users, payment systems, banks that issued compromised cards, and companies that sell their goods and services online.

The urgency of the problem is linked to its potentially huge audience (today, almost all of us use online stores). Group-IB Threat Intelligence specialists continuously monitor the appearance of new JS-sniffers and appeal to the cybersecurity community to take a closer look at this growing threat.

 

 

 

Viktor Okorokov

Threat Intelligence analyst

Group-IB research on targeted attack groups

Thank you for your interest in our research.

Please fill in the form below and we will send you the Group-IB report. Make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your request. The report is sent to your e-mail address.

Contact us to get more information about Group-IB Threat Intelligence or register for product demo

Thank you for the inquiry!
We will contact you soon
to scheldule you free trial.

Report an incident

24/7 Incident Response Assistance +65 3159-4398

Thank you for the inquiry! We will contact you soon.
Cookies

We use cookies on the website to make your browser experience more personal, convenient and secure. You may block or manage the use of cookies, however, in some cases they’re essential to make this site work properly. Learn more about cookies in Group-IB Privacy And Cookies Policy.