Priya PatelTLDR:
Cisco shoppers impacted by a Magecart attack due to a flaw in Adobe’s Magento platform. The attackers injected data-stealing JavaScript into Cisco’s online store, potentially compromising credit card details of shoppers. The flaw, CVE-2024-34102, was patched by Adobe in June but many stores hadn’t updated. Cisco’s site was one of these unpatched sites, running Magento 2.4 (Enterprise). The malicious code was hosted on a Russia-based domain and experts warn of the dangers of such attacks.
Article Summary:
Recently, Cisco shoppers who purchased merchandise from the company’s online store were affected by a Magecart attack, where attackers injected data-stealing JavaScript into the site. This was possible due to a flaw in Adobe’s Magento platform, specifically CVE-2024-34102, which was rated 9.8 in severity. Although Adobe had patched this flaw back in June, many online stores had not updated their software, leaving them vulnerable to such attacks.
The attackers targeted Cisco’s online store, which was running Magento 2.4 (Enterprise) at the time of the attack. The malicious JavaScript code was hosted on a domain with a Russia-based IP address, indicating potential involvement of Russia-based attackers. This incident raised concerns among experts about the dangers of such attacks, as they are difficult to detect without specialized monitoring and can compromise sensitive information of both website owners and customers.
Researchers have emphasized the importance of promptly updating software to patch known vulnerabilities and prevent cyber attacks like this. The incident serves as a reminder for online retailers to prioritize security measures and regularly update their systems to protect both themselves and their customers from potential data breaches.
