A popular version of the Magento ecommerce platform is vulnerable to a remote code execution bug, putting as many as 200,000 online retailers at risk.
Tag Archives: Magento
Shanghaied shops & ABS / Scout detection
Some shop owners leave their shops unattended, be it due to bad configuration or missing updates. It’s the “Key in the ignition – engine running” scenario. The problem: those oversights are easy to spot and hack, all one needs to do is write a script.
The post Shanghaied shops & ABS / Scout detection appeared first on Avira Blog.
Web-Based Keylogger Used to Steal Credit Card Data from Popular Sites
Researchers estimate thousands of ecommerce sites are under attack by a single threat actor that has infected servers with a web-based keylogger.
New Ransomware KimcilWare Targets Magento Websites
Ransomware dubbed KimcilWare is targeting websites running the e-commerce platform Magento and encrypting website files.
Magento Update Addresses XSS, CSRF Vulnerabilities
Magento patched 20 flaws last week, including a stored cross-site scripting (XSS) vulnerability that could have let an attacker take over a site.
Trio of Vulnerabilities Patched in Magneto Web App
A trio of vulnerabilities were recently patched in eBay’s Magento e-commerce web application that could have let attackers carry out a handful of exploits.
Remote Code Execution Hole Patched in Magento eCommerce Platform
A nasty remote code execution vulnerability was recently patched in Magento, eBay’s eCommerce platform