Researchers say that attackers have been bypassing e-commerce sites' Content Security Policy with a method using Google Analytics API, to scrape payment info (Sergiu Gatlan/BleepingComputer)

Sergiu Gatlan / BleepingComputer:
Researchers say that attackers have been bypassing e-commerce sites' Content Security Policy with a method using Google Analytics API, to scrape payment info  —  Hackers are using Google's servers and the Google Analytics platform to steal credit card information submitted by customers of online stores.

from Techmeme https://ift.tt/3hSslFG