E-commerce sites based on open source code under attack

About 100,000 Web pages for e-commerce sites based on the open source OS Commerce software have been compromised with malware through a mass iFrame injection attack, according to security firm Armorize.

The ongoing mass-injection attacks appear to be carried out from Ukraine against the e-commerce sites. The sites that are successfully attacked are compromised with malware which is then used to try and attack visitors to these e-commerce sites, said Wayne Huang, chief technology officer at Armorize.

While attacks across the Web are not uncommon, Huang says this one is notable because it’s a mass-injection type of attack that’s reminiscent of attacks that were carried out about three years ago in high frequency but are not as common today.

Read more at NetworkWorld

Comments are closed.