Archive for the ‘website hacking’ Category

Magecart Hackers Inject iFrame Skimmers in 19 Sites to Steal Payment Data

April 2nd, 2020
Cybersecurity researchers today uncovered an ongoing new Magecart skimmer campaign that so far has successfully compromised at least 19 different e-commerce websites to steal payment card details of their customers. According to a report published today and shared with The Hacker News, RiskIQ researchers spotted a new digital skimmer, dubbed "MakeFrame," that injects HTML iframes into

Posted in credit card breach, credit card hacking, Credit Card Skimmers, E-commerce website, eCommerce Software, JS Sniffers, magecart, Magecart hackers, website hacking | Comments (0)

Let’s Encrypt Issued A Billion Free SSL Certificates in the Last 4 Years

February 28th, 2020
Let's Encrypt, a free, automated, and open certificate signing authority (CA) from the nonprofit Internet Security Research Group (ISRG), has said it's issued a billion certificates since its launch in 2015. The CA issued its first certificate in September 2015, before eventually reaching 100 million in June 2017. Since late last year, Let's Encrypt has issued at least 1.2 million

Posted in HTTPS, Install SSL certificate, secure website, short lived certificate, SSL Certificate, website hacking, website protection, website security | Comments (0)

Drupal Warns Web Admins to Update CMS Sites to Patch a Critical Flaw

December 19th, 2019
If you haven't recently updated your Drupal-based blog or business website to the latest available versions, it's the time. Drupal development team yesterday released important security updates for its widely used open-source content management software that addresses a critical and three "moderately critical" vulnerabilities in its core system. Considering that Drupal-powered websites are

Posted in cms hacking, cyber security, Drupal, Drupal hacking, Drupalgeddon, server hacking, website hacking, website security | Comments (0)

Flaw in Elementor and Beaver Addons Let Anyone Hack WordPress Sites

December 13th, 2019
Attention WordPress users! Your website could easily get hacked if you are using "Ultimate Addons for Beaver Builder," or "Ultimate Addons for Elementor" and haven't recently updated them to the latest available versions. Security researchers have discovered a critical yet easy-to-exploit authentication bypass vulnerability in both widely-used premium WordPress plugins that could allow

Posted in authentication bypass, Beaver Builder, Elementor Addon, Elementor Widgets, Vulnerability, website hacking, WordPress, Wordpress plugin | Comments (0)

OnePlus Suffers New Data Breach Impacting Its Online Store Customers

November 23rd, 2019
Chinese smartphone maker OnePlus has suffered a new data breach exposing personal and order information of an undisclosed number of its customers, likely, as a result of a vulnerability in its online store website. The breach came to light after OnePlus started informing affected customers via email and published a brief FAQ page to disclose information about the security incident. According

Posted in cyber security, data breach, OnePlus, smartphone hacking, website hacking | Comments (0)

Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used

October 1st, 2019
If you have an account with the Comodo discussion board and support forums, also known as ITarian Forum, you should change your password immediately. Cybersecurity company Comodo has become one of the major victims of a recently disclosed vBulletin 0-day vulnerability, exposing login account information of over nearly 245,000 users registered with the Comodo Forums websites. In a brief

Posted in comodo antivirus, cyber security, data breach, forum hacked, forum software, vbulletin, vBulletin Forum, website hacking | Comments (0)

In-Depth Analysis of JS Sniffers Uncovers New Families of Credit Card-Skimming Code

April 3rd, 2019
In a world that's growing increasingly digital, Magecart attacks have emerged as a key cybersecurity threat to e-commerce sites. Magecart, which is in the news a lot lately, is an umbrella term given to 12 different cyber criminal groups that are specialized in secretly implanting a special piece of code on compromised e-commerce sites with an intent to steal payment card details of their

Posted in credit card breach, credit card hacking, Credit Card Skimmers, eCommerce Software, hacking credit cards, JS Sniffers, magecart, website hacking | Comments (0)

Critical Magento SQL Injection Vulnerability Discovered – Patch Your Sites

March 29th, 2019
If your online e-commerce business is running over the Magento platform, you must pay attention to this information. Magento yesterday released new versions of its content management software to address a total of 37 newly-discovered security vulnerabilities. Owned by Adobe since mid-2018, Magento is one of the most popular content management system (CMS) platform that powers 28% of

Posted in eCommerce Software, hacking news, Magento, Magento Ecommerce Website, Magento Hacking, Magento Vulnerability, SQL injection, Vulnerability, website hacking, website security | Comments (0)

New MageCart Attacks Target Bedding Retailers My Pillow and Amerisleep

March 20th, 2019
Cybersecurity researchers today disclosed details of two newly identified Magecart attacks targeting online shoppers of bedding retailers MyPillow and Amerisleep. Magecart is an umbrella term researchers gave to at least 11 different hacking groups that are specialized in implanting malware code on e-commerce websites with an intent to steal payment card details of their customers silently.

Posted in banking security, credit card hacking, credit card security, Credit Card Skimmers, Credit card skimming, digital skimmer, magecart, Online Security, website hacking, website security | Comments (0)

Hacker Breaches Dozens of Sites, Puts 127 Million New Records Up for Sale

February 15th, 2019
A hacker who was selling details of nearly 620 million online accounts stolen from 16 popular websites has now put up a second batch of 127 million records originating from 8 other sites for sale on the dark web. Last week, The Hacker News received an email from a Pakistani hacker who claims to have hacked dozens of popular websites (listed below) and selling their stolen databases online. <!

Posted in data breach, hacking news, hacking passwords, password hacking, website hacked, website hacking | Comments (0)