The Xurum by Akamai team details an ongoing campaign against e-commerce sites using Adobe’s Magento software.
The company has been active since January 2023 and leverages a critical security flaw called CVE-2022-24086.
It also includes an evolution of the web shell called the WSO web shell with a hidden login page to steal credentials.
The attackers have taken a meticulous approach, targeting specific Magento 2 instances rather than indiscriminately spraying their exploits across the internet.
They demonstrate a high level of expertise in Magento and invest considerable time in understanding its internals, the authors note.
According to the report, the attackers have been carefully studying the Magento platform in order to perfect their attack strategies
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply