Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Saturday, 4 February, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

80% Of European Magento Websites At Risk From Hackers Due To Simple Security Oversight.

by The Gurus
November 20, 2018
in Case Studies
Share on FacebookShare on Twitter

Security web scans and analysis on over 80,000 European Magento websites – the most popular e-commerce platform globally – reveal 80% are at risk from cyber criminals, according to leading global cybersecurity experts.

The latest survey carried out by Foregenix in October identifies the most significant vulnerability for European SMEs is hackers looking to exploit the absence of critical security patches.

Global cybersecurity experts Foregenix, which has offices in the UK and Germany, found almost 90% of websites using Magento 1 were at risk, however, the figures fell sharply to under 40% for Magento 2 websites.

The global analysis – which examined over 170,000 Magento websites in total – also reveals that 1.5% of these sites (2,548) are infected with malware. Out of these infected sites, 1,591 were compromised by credit / debit card stealing malware which is actively harvesting their customers’ sensitive data for subsequent sale and / or fraud.

A further 2.3% of all websites are vulnerable to Magento Shoplift, a vulnerability which was disclosed and patches made available in January 2015. This allows hackers to completely administer the website remotely, steal sensitive data and even order items for free through a single exploit command, which is publicly available.

The cybersecurity company, which is renowned globally for its work on payment security, has an active threat intelligence team researching and analysing attack trends, with a strong focus on the e-commerce sector.

Unveilin the research for the first time at Payment Card Industry Security Standards Council European Community Meeting in London, Foregenix’s CEO Andrew Henwood said:

‘While the figures for Europe are of great concern, they are roughly in line with our findings for many other regions such as North America.

‘The issues highlighted are a truly global problem, which threatens to undermine confidence in e-commerce, especially in markets leading the way in online sales such as the UK. Repercussions as a result of compromises are heavy penalties by card providers and these put many smaller traders at risk.

‘Magento and other e-commerce platforms release regular software updates in response to vulnerabilities. These security patches, if not used, can leave websites highly vulnerable to hacking and loss of sensitive data.

‘Online businesses often assume web developers, agencies and hosting providers take care of security. Design agencies are great at producing beautiful, transactional websites that sell their wares, but their expertise on security issues generally isn’t as well developed. Agencies and their clients need to be aware of e-commerce security issues, as even a single breach can be devastating for a small business.

‘Simple precautions can make a real difference to reducing a company’s risk from criminals such as regularly patching, changing default settings on the administration interface and using stronger passwords with multi-factor authentication. Risk can never be entirely eliminated, so companies should also consider investing in a partnership with a cybersecurity specialist organisation and cyber insurance policy.‘

Any business that wants to know whether its website is secure can scan externally for free, using similar technology that detected the issues above at http://webscan.foregenix.com

www.foregenix.com

[tpr-boilerplate company=’null’]

FacebookTweetLinkedIn
ShareTweetShare
Previous Post

Retailers Acting Quickly To Fix Flaws In Software But Code Quality Issues Remain Rampant.

Next Post

Drone Industry Welcomes World’s First Ever Drone Standards.

Recent News

london-skyline-canary-wharf

Ransomware attack halts London trading

February 3, 2023
Ransomware conversations: Why the CFO is pivotal to discussing and preparing for risk

Ransomware conversations: Why the CFO is pivotal to discussing and preparing for risk

February 2, 2023
JD Sports admits data breach

JD Sports admits data breach

January 31, 2023
Acronis seals cyber protection partnership with Fulham FC

Acronis seals cyber protection partnership with Fulham FC

January 30, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information