Magento, checking core files for credit card skimming

Hey guys,

Does anyone know what core files a hacker (using a web shell) would need to modify in Magento in order to skim credit card information from the checkout process?

So far the only file I can see that would allow this is core/Mage/Checkout/controllers/OnepageController.php but I just want to make sure there's nothing else.
mcaincAsked:
Who is Participating?
 
Eddie ShipmanAll-around developerCommented:
It would most likely be the payment processor code. If you're using Paypal, check the app\code\core\Mage\Paypal\ files.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.