Global CyberSecurity
Examining Unique Magento Backdoors
Post Views: 1,399 During a recent investigation into a compromised Magento ecommerce environment, we discovered the presence of five different backdoors that would ...
Global CyberSecurity
Stylish Magento Card Stealer loads Without Script Tags
Post Views: 1,035 Recently one of our analysts, Weston H., found a very interesting credit card stealer in a Magento environment which loads ...
Global CyberSecurity
Vulnerable Plugin Exploited in Spam Redirect Campaign
Post Views: 1,102 Some weeks ago a critical unauthenticated privilege escalation vulnerability was discovered in old, unpatched versions of the wp-user-avatar plugin. It ...
Global CyberSecurity
An Overview of Basic WordPress Hardening
Post Views: 1,656 We have discussed in the past how out-of-the-box security configurations tend to not be very secure. This is usually true ...
Global CyberSecurity
Magecart Swiper Uses Unorthodox Concatenation
Post Views: 1,374 MageCart is the name given to the roughly one dozen groups of cyber criminals targeting e-commerce websites with the goal ...
Global CyberSecurity
Online Credit Card Theft – A Brief Overview of Online Fraud and Abuse – Part 2
Post Views: 1,189 In my previous post about ecommerce credit card swipers I described the general overview of the online ecommerce environment as ...
Global CyberSecurity
Online Credit Card Theft – A Brief Overview of Online Fraud and Abuse – Part 1
Post Views: 1,199 Many clients that we work with host and operate ecommerce websites which are frequent targets of attackers. The goal of ...
