Register for The Paypers news Follow The Paypers on LinkedIn! Follow The Paypers on Twitter! Follow The Paypers on Facebook! Follow The Paypers on Google+!
The Paypers, paypers, Insight in payments, News, Reports, Events
Digital Identity, Security & Online Fraud

New malware targeting Magento stores discovered

Friday 17 February 2017 | 09:42 AM CET

A new malware strain that targets online shops running on the Magento platform has been discovered by Dutch malware experts.

The malware, discovered by Jeroen Boersma and analyzed by Willem de Groot, steals user card information and starts execution whenever a user places a new order.

When this happens, a malicious database trigger executes before Magento puts together the PHP code and assembles the page. This database trigger checks if the malware's malicious JavaScript code is present in the store's header, footer, and copyright section. Moreover, it also checks various Magento CMS blocks where the malicious code could also reside.

While this is not the first web malware that hides code in the website's database, this is the first one that is written in SQL, as a stored procedure, in this case, a Mangeto database trigger operation, according to Bleeping Computer.

Store owners are advised by security specialists to scan their shops via de Groot's two tools, MageReport and the Magento Malware Scanner, which have received updates to detect this new class of malware.

Print | Contact editor | Mail
© 2017 The Paypers
More: Abstract | Link