PROTECT YOURSELF FROM WEB SKIMMING
Many websites that sell products or services rely on third-party payment providers. When you make a purchase, you’re redirected to that provider’s website to complete the transaction, before being redirected back.
Scammers have ways of intercepting traffic to these sites to pop up their own fake version of the payment site to trick users into giving up their card details. This form of “man-in-the-middle” attack doesn’t target the payment provider, but instead alters the code on the merchant website to redirect your traffic to the phishing site.
Malwarebytes Premium’s web protection offers real-time protection against known phishing sites based on their behavior, but you can take further steps: Verify the payment provider’s website using the information in the browser address bar. Click the padlock to view the site’s security and verify it’s pointing to the site you expect (make sure it’s https:// provider.com and not something like https:// http.ps//provider.com). If in doubt, cancel the transaction and alert the online merchant.