THE weekly recap highlights a skimmer attack on the online store of a top-10 global supermarket chain that infected four e-commerce platforms and used a two-part workflow to steal card data, a technique Sansec described as “double-tap skimming.” The attack combines a ready-made skimmer framework with integrations for WordPress, Magento, PrestaShop and OpenCart, followed by a fake payment form that users complete twice.
In January 2026 PrestaShop urged merchants to check stores for skimmers injected into theme template files as part of a broader wave against PrestaShop sites. The roundup also notes that 2025 traffic saw online scam ads reaching nearly 1 trillion impressions and that Nigerian authorities arrested seven suspects running a cyber scam centre in Agbor. It cites Radware’s analysis showing peak network-layer DDoS volumes approaching almost 30 Tbps, with technology and telecoms among the hardest hit. The piece closes by calling for careful review of emerging signals across tools and updates to anticipate the next wave of threats.