Card skimming : Hackers publish details on critical Magento flaw

The Magento e-commerce platform could soon face a number of attacks after hackers publicly released code that exploits a critical vulnerability in its systems which could be used to plant payment card skimmers on sites that have not yet been updated.

PRODSECBUG-2198 is the name of the SQL injection vulnerability that attackers can exploit without the need for authentication.

Any hacker that can obtain user names and crack the password hashes protecting these credentials could theoretically exploit the flaw to take administrative control of administrator accounts. Upon gaining access, they then could install backdoors or any skimming code they choose.

  • How are consumers protecting themselves against online fraud?
  • Phishing scams account for half of all fraud attacks
  • Pointing to the future: the next step in fraud prevention

>> Read : Hackers publish details on critical Magento flaw

Source : Tech Radar

About the author

No Web Agency Staff

No Web Agency est un site spécialisé dans la Publication & Diffusion de Communiqués de Presse, actus... édité par Sébastien Mugnier !

Notre objectif est simple, c’est d’accompagner les entreprises dans le développement de leur image, comme diffuseur de leurs actualités, ou encore en relais de leur stratégie marketing (lancement de produits, salon…).

Bienvenue sur No Web Agency

NO WEB AGENCY est un site spécialisé dans la Publication & Diffusion de Communiqués de Presse, news…, édité parSébastien Mugnier !….++