EXECUTIVE SUMMARY:
A malicious keylogger was discovered on an employee-facing e-commerce portal used by a major United States bank, exposing potentially sensitive information from users. The compromised store, which allows staff to order branded merchandise, had unauthorized JavaScript injected that captured all form input, including login credentials, payment card details, and other personal data. It went largely undetected by mainstream security vendors, underscoring a significant blind spot in traditional threat detection and highlighting the danger posed by client-side malware on external portals associated with large enterprises.