How Hackers Stole Credit Card Data from MyPillow's Website

Hackers broke into MyPillow.com's checkout page in late 2018 and secretly installed code that captured credit card numbers before they were sent to the bank. This happened on the customer's device, bypassing the bank's normal fraud checks, which only monitor transactions after they're processed. The site lacked basic security protections to stop unauthorized code from running.