A naukri.com initiative
Securityaffairs
2w
276
Image Credit: Securityaffairs
Sansec uncovered a supply chain attack via 21 backdoored Magento extensions
- Supply chain attack via 21 backdoored Magento extensions affected 500–1,000 e-stores, including a $40B multinational e-store.
- Researchers at Sansec uncovered a coordinated supply chain attack where a backdoor was hidden in 21 applications, lingering undiscovered for 6 years.
- The malicious code injection was recently discovered after threat actors compromised e-commerce servers through the backdoored extensions.
- Impacted vendors include Tigren, Magesolution (MGS), and Meetanshi, with varied responses received when contacted by Sansec.
Read Full Article
16 Likes
For uninterrupted reading, download the app