Cybersecurity Insights

Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More
Benjamin Hosack

Magento Security - New Magento Malware - Credit Card Harvester – Beware!

27/08/15 06:30

Recent forensic cases have highlighted a new attack for Magento websites that is highly effective at stealing payment card data.  If you run a Magento website, you need to be aware of this.


Read More
Benjamin Hosack

Magento Shoplift – Update - Are you affected?

12/06/15 16:28

This is a simple overview of what the Shoplift problem is and how to re-gain control of your website.

Since Check Point Technologies announced the critical vulnerability – known as Magento Shoplift (SUPEE-5344) – we have been contacted by a significant numbers of online businesses that have been compromised through this vulnerability. 

Read More
Benjamin Hosack

Magento Critical Flaw Exposed - Magento Shoplift (SUPEE-5344)

22/04/15 10:42

If you run a Magento website and you are concerned about the critical vulnerability released via Check Point Technologies today, you are not alone.

Read More
Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More
Benjamin Hosack

Magento Security - New Magento Malware - Credit Card Harvester – Beware!

27/08/15 06:30

Recent forensic cases have highlighted a new attack for Magento websites that is highly effective at stealing payment card data.  If you run a Magento website, you need to be aware of this.


Read More
Benjamin Hosack

Magento Shoplift – Update - Are you affected?

12/06/15 16:28

This is a simple overview of what the Shoplift problem is and how to re-gain control of your website.

Since Check Point Technologies announced the critical vulnerability – known as Magento Shoplift (SUPEE-5344) – we have been contacted by a significant numbers of online businesses that have been compromised through this vulnerability. 

Read More
Benjamin Hosack

Magento Critical Flaw Exposed - Magento Shoplift (SUPEE-5344)

22/04/15 10:42

If you run a Magento website and you are concerned about the critical vulnerability released via Check Point Technologies today, you are not alone.

Read More