Hackers Exploit Magento Bug to Steal Payment Data from E-commerce Websites
April 6, 2024 at 06:33AM Threat actors exploit a critical flaw in Magento, using CVE-2024-20720 to inject a backdoor for arbitrary code execution. The attack involves using Magento layout parser and beberlei/assert package to execute system commands via sed. Russian government has charged six individuals for using skimmer malware to steal credit card information from … Read more