The official website of the British division of Casio, casio.co.uk, fell victim to a cyber attack that exposed user data. This incident was part of a larger web-skimming campaign affecting at least 17 websites using the Magento platform or similar solutions. The malicious code was active on the Casio website from January 14 to January 24, and was discovered on January 28 by IB specialists. The company quickly responded to the threat and removed the malicious script within a day after being notified.
The unique aspect of this attack was that the malicious script was embedded in the main code of the site and targeted all pages except for “/Checkout”. This allowed the scammers to gather user data before the payment stage. A fake data entry form would appear when attempting to place an order, fooling users with its deceptive design.