ecommerce Archives - Cyber Security Minute

1.4 Million Users Install Chrome Extensions That Inject Code Into eCommerce Sites

Issued by: Security Week

With a total install base of over 1.4 million, the extensions can modify cookies on ecommerce websites so that their creator receives affiliate payments for the purchased items, without the victim’s knowledge. The five malicious extensions help users watch Netflix shows together (Netflix Party and Netflix Party 2, with a combined install base of 1.1…

Vulnerabilities

Critical WooCommerce Vulnerability Targeted Hours After Patch

Issued by: Security Week

WooCommerce is a popular open-source eCommerce plugin for WordPress, with more than 5 million installations to date, making it an attractive target for cybercriminals. On Thursday, WooCommerce said that on July 13 it received a report of a critical vulnerability in the plugin, urging users to update their installations as soon as possible, but without…

Vulnerabilities

Fighting holiday fraud: 5 ways ecommerce retailers can boost security

Issued by: CSO

Cyber Monday is just around the corner, so ecommerce retailers are revving up for a make-or-break holiday season. Unfortunately, online attackers are also getting ready, too — ready to try to infiltrate your ecommerce site for your customers’ personal and credit card information during the busiest shopping weeks of the year. That means you need…

Vulnerabilities

eCommerce credit card fraud is nearly an inevitability

Issued by: Help Net Security

Riskified surveyed 5,000 US-based consumers aged 18 and older about their online shopping behaviors, experience with and prevalence of credit card fraud, repeat shopping likelihood and customer satisfaction to develop a full picture of how consumers react to a number of common shopping experiences. The results are worrisome for both consumers and merchants, as roughly…

Vulnerabilities

IDG Contributor Network: Best and worst online retailers for security

Issued by: CSO

The holiday shopping season is over, but the quest for improved security continues Image by Thinkstock A majority of consumers chose to skip the crowds and knocked out their shopping list online this year. The bargain-seeking shoppers were in full force, according to Adobe, which noted that consumers spent more than $5 billion online by…

Cloud Security, Malware & Threats

Backdoor Uploaded to WordPress Sites via eCommerce Plugin Zero-Day

Issued by: Security Week

A zero-day vulnerability in an ecommerce plugin for WordPress has been exploited by cybercriminals to upload backdoors to affected websites, researchers warned. The ideal scenario for profit-driven hackers is to find and exploit security holes in plugins installed on hundreds of thousands or millions of websites. However, targeting a large number of less popular applications…