Magento – Page 2 – WindowsTechs.com

Magento, Visual Studio Code users: You need to patch!

Posted on October 19, 2020 by Zeljka Zorz

Microsoft and Adobe released out-of-band security updates for Visual Studio Code, the Windows Codecs Library, and Magento. All the updates fix vulnerabilities that could be exploited for remote code execution, but the good news is that none of them are… Continue reading Magento, Visual Studio Code users: You need to patch!→

Critical Magento Holes Open Online Shops to Code Execution

Posted on October 15, 2020 by Lindsey O'Donnell

Adobe says the two critical flaws (CVE-2020-24407 and CVE-2020-24400) could allow arbitrary code execution as well as read or write access to the database. Continue reading Critical Magento Holes Open Online Shops to Code Execution→

JavaScript Used by Phishing Page to Steal Magento Credentials

Posted on October 14, 2020 by David Bisson

Digital attackers created a Magento phishing page that used JavaScript to exfiltrate the login credentials of its victims. Sucuri came across a compromised website using the filename “wp-order.php” during an investigation. This phishing page hosted wha… Continue reading JavaScript Used by Phishing Page to Steal Magento Credentials→

Magecart hackers launched largest ever attack against Magento stores

Posted on September 15, 2020 by Waqas

By Waqas
Around 1,904 individual online stores were hacked due to the outdated Magento 1 platform. Here’s what happened.
This is a post from HackRead.com Read the original post: Magecart hackers launched largest ever attack against Magento stores
Continue reading Magecart hackers launched largest ever attack against Magento stores→

Magecart Attack Impacts More Than 10K Online Shoppers

Posted on September 14, 2020 by Tara Seals

Close to 2,000 e-commerce sites were infected over the weekend with a payment-card skimmer, maybe the result of a zero-day exploit. Continue reading Magecart Attack Impacts More Than 10K Online Shoppers→

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws

Posted on September 1, 2020 by Lindsey O'Donnell

Two flaws – one of them yet to be fixed – are afflicting a third-party plugin used by Magento e-commerce websites. Continue reading Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws→

Critical Magento Flaws Allow Code Execution

Posted on July 29, 2020 by Lindsey O'Donnell

Adobe has released patches for critical and important-severity flaws in its popular Magento e-commerce platform. Continue reading Critical Magento Flaws Allow Code Execution→

Magecart Group 8 skimmed card info from 570+ online shops

Posted on July 8, 2020 by Zeljka Zorz

Your payment card information got stolen but you don’t know how, when and where? Maybe you shopped on one of the 570 webshops compromised by the Keeper Magecart group (aka Magecart Group 8) since April 1, 2017. Magecart Group 8’s modus oper… Continue reading Magecart Group 8 skimmed card info from 570+ online shops→

Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores

Posted on June 29, 2020 by Lindsey O'Donnell

Adobe and payment-card companies are making last-minute pleas for e-commerce sites to update to Magento 2, to avoid Magecart attacks and more. Continue reading Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores→

Magento 1 reaches EOL: Merchants urged to upgrade or risk breaches, falling out of PCI DSS compliance

Posted on June 29, 2020 by Zeljka Zorz

When Adobe released security updates for Magento last week, it warned that the Magento 1.x branch is reaching end-of-life (EOL) and support (EOS) on June 30, 2020, and that those were the final security patches available for Magento Commerce 1.14 and M… Continue reading Magento 1 reaches EOL: Merchants urged to upgrade or risk breaches, falling out of PCI DSS compliance→