Patch, patch, patch…
Hackers are commonly exploiting a 2017 vulnerability in a Magento plug-in that permits them to just take over a user’s e-commerce web site and embed malicious code that permits the skimming of credit card data.
Magento, purchased by Adobe for $one.68 billion in May well 2018, is an open up-supply ecommerce system that allows customers build on line stores/system payments. Thanks to the nature of the data it processes it is a primary target for danger actors wanting to steal shoppers’ money credentials.
It has persistently established a juicy vector for assaults.