More than 1000 sites based on Magento were hacked.Data on bank cards was stolen, and resources were installed on miners
Experts Flashpoint reported that they found a compromise of more than 1000 sites running Magento. According to the company, the attackers not only steal data about bank cards of users of these resources, but also infect the sites themselves with malicious scripts, including for crypto currency mining, or use sites to store other malicious programs.
Researchers explain that mass hacking is not a consequence of any vulnerability in the popular e-commerce solution. Most of the resources were hacked through a normal brute force, that is, attackers picked up credentials to administrator accounts, sorting through the most common combinations and combinations by default. In addition to Magento, similar attacks are made on Powerfront CMS and OpenCarts.