Number: IRCNE2015102662
Date: 2015/10/20
According to “zdnets”, websites running the Magento CMS are being infected with malware in a fresh campaign which has impacted thousands of domains in a matter of days.
Over the weekend, researchers from Sucuri Labs said the attack involves the injection of malicious scripts through iframes from guruincsite.com.
According to the team, Google has already blacklisted almost 8,000 infected websites over the past 90 days.
The Magento content management system, tailored for e-commerce, is used by over 200,000 companies worldwide.
Sucuri is investigating the spread of Guruincsite and suspect "it was some vulnerability in Magento or one of the third-party extensions that allowed it to infect thousands of sites within a short time."
However, the actual attack vector is yet to be discovered, which potentially placing hundreds of thousands of online retail websites -- and any financial data stored within -- at risk.
Sucuri recommends that webmasters make sure their systems are up-to-date and to consider using website firewalls to better protect online domains.
- 17