Cybersecurity Insights

Kirsty Trainer

Magento Malware Alert: Malicious Client Side Javascript

02/12/15 16:55

Much has been made of the Magento Shoplift vulnerability and we have certainly seen a notable uplift in Magento related investigations on the back of it. A trend that we have observed involves a variation to the Shoplift attacks, designed to steal payment card data from outsourced payment models - such as iframes as provided by all major payment processors.

Read More
Benjamin Hosack

Magento Malware: Credit Card Hijack – Malicious Javascript Alert

23/11/15 16:39

Our forensic team have just wrapped up a forensic investigation on an e-commerce business that has had a considerable number of customer data stolen – including credit card data. This latest Magento malware attack involved a malicious Javascript – recently announced by Magento on the 16th November 2015.

Read More
Kirsty Trainer

New Magento Patch: SUPEE-6788

10/11/15 10:54

Magento Update: Magento has announced a new patch available for Magento Community versions older than 1.9.2.2 and Magento Enterprise versions older than 1.14.2.2.

Read More
Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More
Kirsty Trainer

Magento Malware Alert: Malicious Client Side Javascript

02/12/15 16:55

Much has been made of the Magento Shoplift vulnerability and we have certainly seen a notable uplift in Magento related investigations on the back of it. A trend that we have observed involves a variation to the Shoplift attacks, designed to steal payment card data from outsourced payment models - such as iframes as provided by all major payment processors.

Read More
Benjamin Hosack

Magento Malware: Credit Card Hijack – Malicious Javascript Alert

23/11/15 16:39

Our forensic team have just wrapped up a forensic investigation on an e-commerce business that has had a considerable number of customer data stolen – including credit card data. This latest Magento malware attack involved a malicious Javascript – recently announced by Magento on the 16th November 2015.

Read More
Kirsty Trainer

New Magento Patch: SUPEE-6788

10/11/15 10:54

Magento Update: Magento has announced a new patch available for Magento Community versions older than 1.9.2.2 and Magento Enterprise versions older than 1.14.2.2.

Read More
Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More