Cyber criminals, in recent months, have spread digital threats that exploited flaws in the e-commerce platform Magento 1 to compromise data from more than 500 online stores, mainly credit cards of customers of these stores.
Magento 1 is one of the most popular platforms for creating online stores in the world. Created in 2008 and purchased by Adobe in 2018, the tool was used by many e-commerces in the world, but in July 2020, 5 years after Magenta 2 was released, it stopped receiving security improvements.
The flaw used by the criminals was exploitable from a modification in the plugin Quickview of the platform, and allowed fraudsters to register users with administrator privileges in stores that used Magento 1, thus enabling the execution of codes and opening of backdoors (undocumented access ports) on the websites.
Want to stay on top of the best tech news of the day? Access and subscribe to our new youtube channel, Kenyannews News. Every day a summary of the main news from the tech world for you!
Using backdoors, criminals are able to implement skimmersmalware used to exfiltrate specific data, such as credit card information — which, in this case, configures the attacks popularly called Magecart.
Abusing the vulnerability would also allow criminals to take full control of the affected websites, but according to the Sansec report, no such occurrence has been observed.
Magento 1 platform is still in use
Even though support for new Magento 1 security updates ended in June 2020, thousands of e-commerces still use the tool, making them vulnerable to attacks such as those detailed by Sansec.
Sansec’s recommendation is that all e-commerce site administrators check which version of Magento (1 or 2) they are using, and in case it is outdated, migrate to the distribution that still receives security updates.