Opencart Magento website redirecting to malware sites

An OpenCart & Magento malware redirecting both desktop and mobile websites to malicious links has been doing rounds. Since last week we have encountered several cases of this malware. There are no specific versions which are being targeted as we have seen this infection in a wide range of versions in both Magento & OpenCart. Also, check our in-detailed blog…

Manchester Chelsea Everton Vulnerable

There is no number we can put to the combine following of Manchester United, Manchester City & Everton. These football clubs have millions and millions of worldwide following. While these clubs be divided by their fans and beliefs, there is something that unites these clubs: a security vulnerability! Yes, you heard it right. A critical security vulnerability was found by…

We are back with our second video. In this one we interview Maximo Pico, who is a Growth Hacker and Founder of Save My Customers. We ask Maxime: What's his take on security and how does security fit in Growth Hacking? (if it does) As a growth hacker, his thoughts on security companies that hack their potential customers and then approach…

Removing Pub2srv malware from Opencart & WordPress

We’ve been watching a specific malware infection targeting OpenCart & WordPress websites for several months. It's commonly referred to as the pub2srv malware infection which redirects your website visitors to other malicious domains like go.pub2srv[.]com go.mobisla[.]com go.oclaserver[.com] deloton.com/afu.php?zoneid= site Dolohen.com   Screenshot of WordPress user request help in the forum What is pub2srv malware? What are its symptoms? It is a…

Prevent XSS in OpenCart

Common signs of your OpenCart store being vulnerable to Cross-site Scripting is malicious popups, credit card information theft and compromise of username/passwords of your users. While OpenCart takes security very seriously, new security issues may be discovered over time. Poorly coded extensions tend to be the #1 cause of security breaches. In this guide, we'll talk about what XSS is,…

Joomla 3.8 Patches Critical 8-Year Old Vulnerability

Joomla, one of the world's most popular CMS powering over 3.3% of world's websites, recently patched a critical vulnerability which has persisted in its content management system for 8 years. Leveraging this vulnerability could allow an attacker to steal administrator login credentials, paving way for further key information theft. This appalling revelation reveals the vulnerable state of CMSs which often go…

In 2016, the Magecart infrastructure, notoriously known as a fraudulent payment stealing script was making waves across the e-commerce industry. Named so because it largely targeted e-commerce platform giants like Magento, Powerfront CMS and OpenCart, leading to massive theft of credit card information from these e-commerce sites. However, even a year later, the Magecart issue hasn't been dissolved and remains a…

Close