A number of sites have been hit by an attack that steals payment card details. Here's how to protect your website and your customers.
In some cases the attack may add fields to the form in order to collect additional data from its victims.
RiskIQ suspects the attackers were able to gain access to the affected sites because their administrators had failed to keep the ecommerce software and associated plugins up to date.
“For example, the most recent Magento security update patches two vulnerabilities that could allow remote attackers to execute code on vulnerable installations,” said RiskIQ threat researcher Darren Spruell.
“It could also be the case that another exposure was exploited. For example, sites deployed in hosting environments could have been affected by vulnerable cPanel hosting management software on the server, or stolen admin account credentials could have been used to access and modify site contents.”
Whatever method the attackers used to gain access, the only change they needed to make was to insert a single