logo.png
Guided Website Threat Review

Foregenix Blog

Ewan Gardner

Anatomy Of A Magento Attack: Froghopper

 

Magento is the most popular eCommerce web application in the world, with an estimated 236,000 live web sites using the Content Management System (CMS) technology[1]. Available in both paid-for “enterprise” versions and free “community” versions, it powers some of the world's most popular websites including Huawai[2], Land Rover[3] and Helly Hansen[4]. However, common eCommerce platforms make popular targets for hackers and thieves looking to steal payment card information. Like any web application, attackers will always look to exploit vulnerabilities in the underlying code before researchers can identify them and developers can fix them, but even an up-to-date and fully patched system can be left vulnerable if it is not configured properly or merchants do not follow information security best practice.

Read More
Mike Hinton

Foregenix Partner with Magento Solutions Partner, PushON

 

We’re extremely happy to announce our newly formed partnership with Manchester based agency PushON.

Over the past few months both parties have forged a strong relationship with one another and agreed a partnership would be the natural ‘next step’.

Read More
Benjamin Hosack

Magento Websites: How is the security health of your website?

web security, Magento, Cybersecurity

,10/07/17 16:40
Cyber security is a hot topic, with articles appearing most days within the mainstream media.   As consumers, we’re all becoming more cyber-aware as we see the latest well-known brand in the headlines for having lost their client data.

Most of us will have been affected by a credit card breach within the last few years - I can’t imagine there could be many people in first world countries who have not had their credit / debit card details stolen and received a replacement card from their bank. It's a major hassle - stressful and a huge waste of time.

Read More
Mike Hinton

Foregenix Partner with Magento Solutions Partner, Williams Commerce

Magento, Cybersecurity

,30/06/17 16:40

We’re extremely happy to announce our newly formed partnership with Leicestershire based agency Williams Commerce.

Read More
Mike Hinton

New JavaScript Malware Targeting Stripe.js on Magento Websites - Ajax Harvester

web security, Magento, malware, JavaScript

,04/04/17 07:53

The Foregenix DFIR team has discovered what is believed to be a unreported piece of malware which has recently been used to target insecure eCommerce websites processing through Stripe, running on the Magento framework.

Read More
Ewan Gardner

Anatomy Of A Magento Attack: Froghopper

 

Magento is the most popular eCommerce web application in the world, with an estimated 236,000 live web sites using the Content Management System (CMS) technology[1]. Available in both paid-for “enterprise” versions and free “community” versions, it powers some of the world's most popular websites including Huawai[2], Land Rover[3] and Helly Hansen[4]. However, common eCommerce platforms make popular targets for hackers and thieves looking to steal payment card information. Like any web application, attackers will always look to exploit vulnerabilities in the underlying code before researchers can identify them and developers can fix them, but even an up-to-date and fully patched system can be left vulnerable if it is not configured properly or merchants do not follow information security best practice.

Read More
Mike Hinton

Foregenix Partner with Magento Solutions Partner, PushON

 

We’re extremely happy to announce our newly formed partnership with Manchester based agency PushON.

Over the past few months both parties have forged a strong relationship with one another and agreed a partnership would be the natural ‘next step’.

Read More
Benjamin Hosack

Magento Websites: How is the security health of your website?

web security, Magento, Cybersecurity

,10/07/17 16:40
Cyber security is a hot topic, with articles appearing most days within the mainstream media.   As consumers, we’re all becoming more cyber-aware as we see the latest well-known brand in the headlines for having lost their client data.

Most of us will have been affected by a credit card breach within the last few years - I can’t imagine there could be many people in first world countries who have not had their credit / debit card details stolen and received a replacement card from their bank. It's a major hassle - stressful and a huge waste of time.

Read More
Mike Hinton

Foregenix Partner with Magento Solutions Partner, Williams Commerce

Magento, Cybersecurity

,30/06/17 16:40

We’re extremely happy to announce our newly formed partnership with Leicestershire based agency Williams Commerce.

Read More
Mike Hinton

New JavaScript Malware Targeting Stripe.js on Magento Websites - Ajax Harvester

web security, Magento, malware, JavaScript

,04/04/17 07:53

The Foregenix DFIR team has discovered what is believed to be a unreported piece of malware which has recently been used to target insecure eCommerce websites processing through Stripe, running on the Magento framework.

Read More

Cyber Security Insights

Andrew McKenna
14/09/17 11:50

Containers: Keeping You Secure

Given there’s a lot of talk about containerisation in the applications marketplace at the moment, this post is intended to provide a light ...

Read More

Jake Dennys
11/09/17 13:04

Foregenix Achieve 11 Award Nominations in 6 Months

As a UK-based cybersecurity firm, our employees and clients touch every continent on the globe. Despite the company’s small size, with only 91 ...

Read More

Zacharias Pigadas
08/09/17 15:45

Getting The Most Out Of Your Web Application Penetration Test

The purpose of this post is to help clients better prepare, digest and act upon the results of a web application penetration test. A large amount of ...

Read More

Andrew McKenna
06/09/17 09:54

An Introduction to DevOps

We’ll start at the beginning and ramp up really quickly. DevOps is a portmanteau of development and operations. We can consider it to mean automation ...

Read More

Ewan Gardner
07/08/17 14:51

Anatomy Of A Magento Attack: Froghopper

  Magento is the most popular eCommerce web application in the world, with an estimated 236,000 live web sites using the Content Management System ...

Read More