E-commerce site data compromised via critical Magento flaw | allinfosecnews.com

April 8, 2024, 2:35 p.m. | SC Staff

SC Magazine feed for Risk Management www.scmagazine.com

Attacks leveraging an already fixed critical Magento vulnerability, tracked as CVE-2024-20720, have been launched against e-commerce websites to facilitate the distribution of a Stripe payment skimmer for financial data exfiltration, according to The Hacker News.

attacks commerce compromised critical cve cve-2024 data data exfiltration data security distribution e-commerce exfiltration financial financial data flaw hacker magento magento vulnerability payment skimmer stripe the hacker news vulnerability vulnerability management websites

More from www.scmagazine.com / SC Magazine feed for Risk Management

Leveling the cybersecurity playing field 1 day, 1 hour ago | www.scmagazine.com

blumira cybersecurity cybersecurity insurance entry +4

2 D-Link router bugs added to CISA’s exploited vulnerabilities catalog 1 day, 5 hours ago | www.scmagazine.com

bugs catalog cisa d-link +16

Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387 1 day, 8 hours ago | www.scmagazine.com

aiml cisa deepfakes korea +4

Australians’ prescription records breached in large-scale ransomware attack 1 day, 8 hours ago | www.scmagazine.com

attack breached data federal +15

Financial companies must have data breach incident plans, SEC says 1 day, 9 hours ago | www.scmagazine.com

agents breach breach incident broker +27

Cybersecurity summit at Google tackles election threats 1 day, 10 hours ago | www.scmagazine.com

address advanced advanced technologies campus +15

Researchers: 'Adversarial attacks' capable of producing harmful AI responses 1 day, 10 hours ago | www.scmagazine.com

adversarial adversarial attacks ai-benefitsrisks aiml +21

Downgrade attacks enabled by newly discovered Wi-Fi flaw 1 day, 10 hours ago | www.scmagazine.com

attacks design endpointdevice-security flaw +14

Report: Cat-phishing of legitimate websites on the rise 1 day, 10 hours ago | www.scmagazine.com

bypass cat cat-phishing cybercriminals +18

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

COMM Penetration Tester (PenTest-2), Chantilly, VA OS&CI Job #368

@ Allen Integrated Solutions | Chantilly, Virginia, United States

View on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité

@ Hifield | Sèvres, France

View on infosec-jobs.com

Infrastructure Consultant

@ Telefonica Tech | Belfast, United Kingdom

View on infosec-jobs.com