Millions of osCommerce stores hacked

Armorize reports that unknown attackers have exploited numerous online stores that use an old version of osCommerce to deploy malicious code. The attackers reportedly exploited at least three known vulnerabilities in version 2.2 of the open source shop system to gain access to the stores’ configuration interfaces. This allowed them to place on the pages first an iFrame and then JavaScript code to infect store visitors with malicious code.

Armorize said that the attackers managed to dramatically increase the number of infected store pages within a very short period of time: while Google only returned 90,000 hits containing the embedded malware when the issue first became known, the number had apparently risen to 3.8 million by last Sunday (31 July), after only a week. However, the hits sometimes also include various sub-pages of the same store. When tested by The H’s associates at heise Security on Tuesday afternoon, Google returned 4.5 million infected pages.

Read more at H-online

Comments are closed.