Yes once again Magento is being targetted for credit card fraud. According to Flashpoint, “attackers who are using brute-force password attacks to access administration panels to scrape credit card numbers and install malware that mines cryptocurrency.”
Why you ask? Well the stealing credit card is obvious but the mining? Well Magento has a big footprint in terms of hosting needs and so does cryptocurrency mining. So what better way than to steal that power from someone else. Bit like “sharing” your neighbor’s cable TV link. But not as innocuous.
But don’t worry too much. Their efforts are simply brute-force attacks using common and known […] Read more
A new Magento hack which steals credit card data on checkout has been detected. Unlike other hacks it uses a Magento extension using database triggers to check and reinstall itself if components have been detected and removed. So how do you detect and/or get rid of it? […] Read more