3034/2025/WEB 'Dive into digital skimming: understanding, investigating and disrupting JS sniffers'

The aim of this webinar is to examine digital skimming (also known as web skimming), a major threat in which criminals inject malicious JavaScript sniffers (JS-Sniffers) into e commerce sites to steal customers’ payment data during checkout. This webinar will provide a detailed examination of the criminal ecosystem that supports these attacks. The session will cover the operational structure of these criminal groups, the development and distribution of JS Sniffer malware, and the methods used to monetize stolen data on underground markets. It will also outline specific investigative techniques for identifying malicious infrastructure and tracking threat actor activity.

By the end of this webinar, the audience will be able to:

• Describe the digital skimming threat landscape;
• Explain the criminal business model;
• Analyse a JS-Sniffer attack;
• Apply investigative techniques;
• Evaluate and recommend disruption strategies.

EMPACT training activity
 

Combatting new forms of organised crime requires more cooperation between police and gendarmes, customs officers, border guards, judges, and prosecutors. EU institutions, agencies and Member States work together to tackle organised and serious international crime through a permanent and key instrument: the European Multidisciplinary Platform Against Criminal Threats (EMPACT).

CEPOL plays a crucial role in the EMPACT mechanism through the provision of specialised training and the identification of training needs within each common security threat. Every year, CEPOL provides a comprehensive training package for each common EU crime priority consisting of onsite, online and exchange training activities.

Check more of CEPOL's EMPACT training activities here.