Phishing Attacks Target Ecommerce Checkout Pages
Denis Sinegubko Hunting credit card details on compromised ecommerce websites has become popular over the last two years. We have reported multiple cases in the past where…
Browsing Category
Ecommerce Security
154 posts
PCI for SMB – Requirement 2- Do Not Use Defaults
Daniel Cid Update: Read our new PCI Compliance guide. If you have an ecommerce website and you accept credit cards from your clients, you probably already heard…
PCI Compliance for eCommerce – Choosing Between SAQ A and A-EP
Tony Perez Update: Read our new PCI Compliance guide. The Payment Card Industry Data Security Standards (PCI DSS) is a set of security standards established in a…
The Growing DDoS Threat to Website Owners
As website attacks continue to evolve, we see growing levels of sophistication in the way attackers are expanding the economics of their industry. The monetization…
Magento Credit Card Stealer for Braintree Extension
John Castro We regularly find and write about malware that steals credit card details from Magento sites because attackers discover new techniques to obtain sensitive data daily.…
PCI for SMB: Requirement 1- Install and Maintain a Firewall
Update: Read our new PCI Compliance guide. If you have an ecommerce website, allowing you to accept credit cards on your site, PCI compliance should…
Domain Validation: SSL’s Other Job
Jon Watson SSL certificates are a hot topic today. Website owners are becoming increasingly aware that collecting information on non-HTTPS secured pages is a bad idea and…
Fake SUPEE-5344 Patch Steals Payment Details
Update 2/17: This post is not about hackers tricking webmasters into installing fake Magento security patch. It’s about malware that pretends to be an applied…
Magento PCI Compliance Issues and Theft Over TLS
With about 30% of the market share, Magento is gradually becoming a “WordPress” of the ecommerce world. Like WordPress, it becomes a major target for…
Massive Magento Guruincsite Infection
We are currently seeing a massive attack on Magento sites where hackers inject malicious scripts that create iframes from “guruincsite[.]com“. Google already blacklisted about seven thousand sites because…
Magento Platform Targeted By Credit Card Scrapers
Peter Gramantik We’ve been writing a lot about ecommerce hacks and PCI Compliance recently. The more people buy things online, the more of an issue this will…