More than 1000 Magento website were hacked.

More than 1000 sites based on Magento were hacked.Data on bank cards was stolen, and resources were installed on miners Experts Flashpoint reported that they found a compromise of more than 1000 sites running Magento. According to the company, the attackers not only steal data about bank cards of users of these resources, but also infect the sites themselves with malicious scripts, including for crypto currency mining, or use sites to store other malicious programs. Researchers explain that mass...


Magento fix 35 vulnerabilities in two products

The WordPress plugin "Display Widgets" distributes malware On September 14, Magento, developing the same-name online store management system, released updates for Magento Commerce and Magento Open Source, eliminating numerous vulnerabilities, in particular, a critically serious remote code execution error. In summary, updates to Magento 2.1.9 and 2.0.16 cover 35 gaps of varying degrees of danger. Among them - one critical, received the number APPSEC-1800. It allowed the administrator with...