Ongoing Xurum attacks target Magento 2 e-stores | allinfosecnews.com

Aug. 14, 2023, 5:46 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Experts warn of ongoing attacks, dubbed Xurum, targeting e-commerce websites using Adobe’s Magento 2 CMS. Akamai researchers warn of ongoing attacks, dubbed Xurum, targeting e-commerce websites running the Magento 2 CMS. The attackers are actively exploiting a server-side template injection issue, tracked as CVE-2022-24086, (CVSS score: 9.8), in Adobe Commerce and Magento Open Source. The […]

The post Ongoing Xurum attacks target Magento 2 e-stores appeared first on Security Affairs.

adobe adobe commerce akamai attackers attacks breaking news cms commerce cve cve-2022-24086 cvss cyber crime cybercrime e-commerce experts exploiting hacking information security news injection issue it information security magento pierluigi paganini researchers running score server target targeting template template injection websites xurum

More from securityaffairs.co / Security Affairs

Ticketmaster confirms data breach impacting 560 million customers 10 hours ago | securityaffairs.co

addresses administrator breach breachforums +22

Critical Apache Log4j2 flaw still threatens global finance 15 hours ago | securityaffairs.co

analyst apache apache log4j2 breaking news +31

Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin 16 hours ago | securityaffairs.co

bitcoin breaking news btc cryptocurrency +13

ShinyHunters is selling data of 30 million Santander customers 1 day, 9 hours ago | securityaffairs.co

actor bank breach breaking news +20

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours 1 day, 17 hours ago | securityaffairs.co

72 hours black lotus botnet breaking news +23

LilacSquid APT targeted organizations in the U.S., Europe, and Asia since at least 2021 1 day, 19 hours ago | securityaffairs.co

apt apt group asia attacks +19

BBC disclosed a data breach impacting its Pension Scheme members 2 days ago | securityaffairs.co

access bbc breach breaking news +25

CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited … 2 days, 11 hours ago | securityaffairs.co

agency breaking news catalog check +31

Experts found a macOS version of the sophisticated LightSpy spyware 2 days, 12 hours ago | securityaffairs.co

breaking news cyber crime cybercrime experts +20

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com