Magento

  • Blog
    digitpatrox1 week ago
    18

    Magento supply chain attack compromises hundreds of e-stores

    A supply chain attack involving 21 backdoored Magento extensions has compromised between 500 and 1,000 e-commerce stores, including one belonging to a $40 billion multinational. Sansec researchers who discovered the attack report that some extensions were backdoored as far back as 2019, but the malicious code was only activated in April 2025. “Multiple vendors were hacked in a coordinated supply…

    Read More »
  • Blog
    digitpatroxOctober 5, 2024
    276

    Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks

    Adobe Commerce and Magento online stores are being targeted in “CosmicSting” attacks at an alarming rate, with threat actors hacking approximately 5% of all stores. The CosmicSting vulnerability (CVE-2024-34102) is a critical severity information disclosure flaw; when chained with CVE-2024-2961, a security issue in glibc’s iconv function, an attacker can achieve remote code execution on the target server. The critical flaw…

    Read More »
Back to top button
close