<ul><li>Hundreds of eCommerce sites, including those owned by a $40 billion multinational company, were impacted by a supply chain attack involving a sophisticated backdoor embedded within Magento extensions.</li><li>Attackers activated dormant malicious code after six years, compromising 500 to 1,000 websites with the ability to steal payment card information and other sensitive data.</li><li>The incident underscores the shift to long con cyberattacks targeting supply chains, urging organizations to prioritize cybersecurity measures and ensure the integrity of the software supply chain.</li><li>The evolving threat landscape calls for a zero-trust framework, automated code integrity checks, and enhanced scrutiny of software supply chains to mitigate vulnerabilities in the digital economy.</li></ul>

The Long Game: How a 6-Year-Old Backdoor Compromised eCommerce

Discover more