3rd Party Risk Management , Cybercrime , Fraud Management & Cybercrime
4,387 Online Merchants Compromised, Including Cisco and National Geographic Stores (euroinfosec) • October 4, 2024
Thousands of online stores running Adobe Commerce and Magento software have been hacked starting this summer and infected with digital payment skimmers.
See Also: OnDemand | 2024 Phishing Insights: What 11.9 Million User Behaviors Reveal About Your Risk
Attackers have been exploiting now-patched flaws in both software platforms tracked as CVE-2024-34102, aka CosmicSting, to steal credentials, said Sansec, an Amsterdam firm that helps merchants secure their online stores (see: E-Commerce Shops: 12% Are Publicly Exposing Private Backups).
When combined with another now-patched flaw in the software – tracked as CVE-2024-2961 – attackers can also “run code directly on your servers and use that to install backdoors,” it said.
Sansec data showed that as of Tuesday, 5% of all Adobe …
3rd Party Risk Management” /> Cybercrime” /> Fraud Risk Management” /> Patch Management” />
Watch/Read More