Magento Supply Chain Attack Targets Extension Developer FishPig
Ben Martin Magento store owners using the popular FishPig extensions should be wary of a recent supply chain attack which compromised their software repository. FishPig released a…
Browsing Category
Magento Security
97 posts
Security Lessons Learned from 2021
Victor Santoyo There’s no one specific topic or target or audience when it comes to website security. But when you clean enough hacked websites, you start to…
It Takes 2 Seconds of Silence to Skim a Credit Card
Matt Morrow E-commerce websites are valuable targets for attackers. Bad actors often leverage creative techniques to conceal their credit card stealers and gather sensitive credit card information…
Credit Card Stealer Targets PsiGate Payment Gateway Software
Luke Leal Magento’s payment provider gateway offers functionalities for site owners to integrate stores with payment service providers. This handy feature lets a website create and handle…
WordPress Overtakes Magento in Credit Card Skimmers
One of the most important monitoring tools in our security platform is our Sucuri SiteCheck scanner. It’s a free tool to scan your website for…
How To Protect Magento Websites
Ashley Sand As more businesses switch to online options Magento is a popular Content Management System (CMS) of choice for eCommerce websites. That being said, with the…
Adobe Patches Critical RCE Vulnerability in Magento2
On Sunday, February 13th, Adobe pushed an emergency update to their Magento2 ecommerce software patching a critical unauthenticated remote code execution vulnerability. It is marked…
7 Ways to Secure Magento 1
While unpatched installations of Magento 2 contain many vulnerabilities, I’m going to focus my attention on Magento 1 for this article. This is because Magento…
Adobe Patches Critical Magento Vulnerabilities in Recent Update
Adobe has recently released several critical security patches for both their open source and commercial versions of their ecommerce platform. There are a total of…
Examining Unique Magento Backdoors
Liam Smith During a recent investigation into a compromised Magento ecommerce environment, we discovered the presence of five different backdoors that would provide attackers with code execution…
Stylish Magento Card Stealer loads Without Script Tags
Recently one of our analysts, Weston H., found a very interesting credit card stealer in a Magento environment which loads a malicious JavaScript without using…