menu

m2cmds.php: Magento 2 Dev Tool or Deceptive Hacktool?

2020-12-11 :: Luke
#m2cmds.php  #dev tool  #magento  #ecommerce  #PHP  #website malware  m2cmds.php: Magento 2 Dev Tool or Deceptive Hacktool?
Is this m2cmds.php file an insecure third-party dev tool for Magento - or a malicious hacktool used by an attacker?
Read more →

Skimmer Loaded Via Image On MemberPress Checkout Form & Magento

2020-12-08 :: Luke
#0x165a3f  #skimmer  #WordPress  #Magento  #steganography  #ecommerce  #JavaScript  #website malware  Skimmer Loaded Via Image On MemberPress Checkout Form & Magento
A payment card skimmer hidden within an existing PNG image on an infected WordPress website that uses MemberPress and collects payment data for private membership. A variant was also found stealing payment card information on an infected Magento website.
Read more →

Magento 2 Skimmer Uses getCredentialStorage

2020-11-25 :: Luke
#getCredentialStorage  #PHP  #login stealer  #skimmer  #magento  #ecommerce  #website malware  Magento 2 Skimmer Uses getCredentialStorage
A PHP skimmer injected into a Magento 2 core file and used to steal login data from HTTP requests.
Read more →

Magento 2 PHP Skimmer 0x3C Captures Customer Data To Image File

2020-10-20 :: Luke
#0x3C  #skimmer  #PHP  #ecommerce  #magento  #website malware  Magento 2 PHP Skimmer 0x3C Captures Customer Data To Image File
A PHP skimmer injected into a Magento 2 core file that captures POST data on the cart checkout page and saves the stolen data to an image file on the hosting server.
Read more →

Magento PHP Injection Loads JS Skimmer

2020-10-01 :: Luke
#underscorefw  #JavaScript  #skimmer  #magento  #ecommerce  #website malware  Magento PHP Injection Loads JS Skimmer
A JavaScript skimmer that conditionally loads from malicious PHP code injected into a Magento file.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.