Author Topic: Magento credit card stealer Reinfector allows reinfect sites with malicious code  (Read 28 times)

Offline Antus67

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1800
    • View Profile
BY: June 21, 2018  By Pierluigi Paganini

Researchers at Sucuri reported crooks are using a very simple evasion technique to reinfect Magento websites after their malicious code has been removed.

Cybercriminals have devised a method to hide the malicious code, the ‘credit card stealer reinfector’, used to reinfect the websites and continue to steal personal and financial data.

The credit card stealer reinfector is hidden inside the default configuration file (config.php) of Magento installs, it is included on the main index.php and is loaded with every page visited by the users, this process ensures that the code is re-injected into multiple files of the website.

full article here:https://securityaffairs.co/wordpress/73770/malware/magento-credit-card-stealer-reinfector.html
Vipre Advanced Security
Adguard
Trojan Remover
Zemana Anti Logger