Cyber Crime Centre warns of digital skimming

17 November 2023

News article

Digital skimming attacks are rising with significant risks to e-commerce businesses and their customers

In the run-up to the festive season, many organisations across Northern Ireland will be preparing for a seasonal increase in online sales to customers based both at home and abroad. As part of this preparation, the Police Service of Northern Ireland's Cyber Crime Centre would encourage all online retailers to consider the risks posed by digital skimming.

What is digital skimming?

Digital skimming is the action of stealing credit card information or payment card data from customers of an online store. The transaction data is intercepted during the online purchase checkout process, without customers noticing anything unusual.

Whether through vulnerabilities, configuration errors or brute force, as experienced recently by a number of organisations in Northern Ireland, criminals can gain access to online stores with the aim of using malware to capture customer data.

Affected customers are often unaware that their card was copied (skimmed) and such attacks can go undetected for a long time. They pose significant risks to the business, not least reputational damage with customers questioning the safety of the service.

How can you protect against digital skimming?

Don't make it easy for cyber criminals to exploit your systems. You can:

use malware monitors with web skimming capabilities
set strong password policies and training for staff
carry out regular vulnerability audits of your e-commerce website
limit access to your store's control panel
regularly patch and update your security software

If you experience an attack, the PSNI recommends the following steps:

in case of malware infection, change all admin and database passwords immediately
use a malware scanner to find any backdoors the attackers may have installed
collect all available evidence and report the attack to Action Fraud
in case of a personal data breach, comply with the applicable data protection legislation

For more information, read the Europol's advisory on digital skimming.

First published 17 November 2023

Printer-friendly version

Actions

PSNI cyber crime information

Also on this site

Cyber security breach detection

Protect your business online

Guides
- Find guides by sector
- Find guides by theme
  - Starting a business
    - Before you start your business
      - Considering starting a business
      - Start-up business ideas
    - Start your business
    - Running your start-up business
    - Grow your start-up business
      - Trade with other countries
      - Take steps to grow your business
  - Finance
    - Find local finance
      - Northern Ireland business support finder
    - Raising finance
    - Managing finance
    - Financial difficulty
      - Managing financial difficulty
  - Taxes
    - Business tax
    - Self-employed and tax
      - Setting up as self-employed and tax
      - Help and support for the self-employed
    - PAYE and payroll
      - PAYE and payroll for employers
    - Keeping records for business
      - Record-keeping
    - Excise duties
    - Industry-specific taxes
    - Complying with European law
    - Contact or deal with HM Revenue & Customs (HMRC)
    - Companies House returns, accounts and other responsibilities
    - Business changes
      - Making changes to your business
    - Selling, closing or restarting your business
    - Accountants and tax advisers
  - Employment and skills
    - HR documents and templates
    - Recruitment
    - Employment documents and policies
      - Staff documents and employment policies
    - Pay, pensions and minimum wage
    - Manage people
    - Holidays, statutory leave and time off
      - Holiday, other leave and sickness
      - Maternity, paternity, adoption and parental leave
    - Performance, training and development
    - Resolve conflict and staff leaving
      - Problems at work
      - Dismissals and staff leaving
  - Health and safety
    - Coronavirus (COVID-19): Staying safe at work
    - Health and safety basics
      - Protecting your business
    - Health and safety made simple
    - Make your business safer
      - Managing the welfare of people
      - Safer ways of working
  - Efficiency and environment
    - Environmental action to improve your business
    - Reduce, reuse, recycle your business waste
    - Resource efficiency
    - Reducing your environmental impact
    - Environmental guidance by business sector
  - Business premises and rates
    - Choosing the right business property
    - Rates for non-domestic properties
      - Business rates
    - Property management and costs
    - Adapting and improving your property
      - Make your property more efficient
      - Disabled access and facilities in business premises
  - Innovation and R&D
    - Product and service development
      - Developing products and services
      - Research and development
    - Design and business innovation
      - Use innovation in your business
      - Design for business success
    - Intellectual property
      - Intellectual property for business
      - Patents, trade marks, copyright and design
  - Sales and marketing
    - Business contracts and fair competition
    - Consumer rights and protection
    - Marketing your business
    - Product safety
    - Sales laws
    - Know your customers
    - Maximise your sales
  - IT
    - IT basics
      - Introduction to IT
      - Choosing suppliers
    - Software and technology solutions
      - Software and business applications
      - Communications
    - Getting online
      - Create and manage a website
      - E-commerce
    - Security and data protection
      - Data protection and legal issues
      - IT security and risks
  - Exporting and importing
    - Basics of importing and exporting
    - Choosing a market
      - Doing business in the EU
      - Trading with countries outside the EU
    - Procedures and licences
    - Sector overviews and regulations
    - Moving your goods
    - Customs declarations
      - National Clearance Hub
  - Grow your business
    - Prepare for growth
      - Assessing current performance
      - Planning business growth
    - Strategies for growth
    - Finance and logistics
      - How to grow your business
      - Financing growth
    - Managing growth
      - Leading staff through growth
      - Manage business risks
  - Buy or sell a business
    - Acquiring a business
    - Selling your business
    - Exiting and transferring your business
      - Businesses in difficulty
      - Transferring your business
Resources
News
Events