Industry News  Continuous Xurum Attacks Targeting E-commerce Websites through Severe Magento 2 Vulnerability
Industry News

Continuous Xurum Attacks Targeting E-commerce Websites through Severe Magento 2 Vulnerability

Mister CybersecurityMister CybersecurityAugust 14, 20230
PinterestLinkedInTumblrRedditVKWhatsApp
More stories



Since January 2023, there was an ongoing marketing campaign focusing on e-commerce websites that use Adobe’s Magento 2 software program. This marketing campaign, referred to as Xurum, exploits a crucial safety flaw in Adobe Commerce and Magento Open Source that has now been patched. If efficiently exploited, this flaw might result in arbitrary code execution. The attackers behind Xurum, believed to be of Russian origin, are primarily fascinated with payment stats from the orders made prior to now 10 days.

In addition to exploiting the safety flaw, the attackers have additionally contaminated some web sites with JavaScript-based skimmers. These skimmers gather bank card data and ship it to a distant server. The full extent of the marketing campaign is presently unknown.

The assault chain utilized by the attackers includes weaponizing CVE-2022-24086 for preliminary entry after which utilizing it to execute malicious PHP code. This code gathers details about the host and deploys an internet shell named wso-ng, disguised as a Google Shopping Ads part. The internet shell solely prompts when the attacker sends the cookie “magemojo000” within the HTTP request. Once activated, it accesses and exfiltrates details about the gross sales order payment strategies from the previous 10 days. The assaults conclude with the creation of a rogue admin consumer with the names “mageworx” or “mageplaza,” that are in style Magento 2 extension shops.

The internet shell wso-ng is an evolution of the WSO internet shell and features a hidden login web page to steal credentials. It additionally integrates with authentic instruments like VirusTotal and SecurityTrails to assemble details about the contaminated machine’s IP fame and different domains hosted on the identical server.

The attackers behind Xurum reveal a meticulous and focused method, specializing in particular Magento 2 cases reasonably than launching indiscriminate assaults. They present a excessive stage of experience in Magento and make investments appreciable time in understanding its internals and establishing their assault infrastructure.



Source hyperlink

PinterestLinkedInTumblrRedditVKWhatsApp

Mister Cybersecurity

Advanced Cyber Attacks Used by Charming Kitten to Target Iranian Dissidents
Telegram and Discord: A New Remote Access Trojan Makes Its Presence Known
Related posts
Industry News

As an emerging author, I am excited to share my thoughts on the importance of perseverance in the writing journey. Writing is not always easy, and there are often moments of self-doubt and frustration. However, it is crucial to remember that every great writer faced challenges and setbacks along the way. The key is to keep pushing forward, no matter how difficult it may seem.

One of the biggest obstacles writers face is rejection. It can be disheartening to receive rejection letters from publishers or literary agents, but it is important not to let it discourage you. Instead, use it as motivation to improve your craft and keep submitting your work. Remember, even the most successful authors faced rejection before finding success.

Another challenge writers often encounter is writer’s block. It can be frustrating to sit down at your desk and have no idea what to write. In these moments, it is important to step back and take a break. Sometimes, inspiration strikes when you least expect it. Take a walk, read a book, or simply relax and let your mind wander. The words will come when you are ready.

In addition to rejection and writer’s block, writers also face the pressure to constantly produce new and exciting work. It can be overwhelming to feel like you always need to be writing the next bestseller. However, it is important to remember that writing is a process, and it is okay to take your time and focus on creating quality work rather than quantity. Trust in your abilities and believe in the power of your words.

Ultimately, the writing journey is a marathon, not a sprint. It takes time, dedication, and perseverance to succeed in the literary world. Remember to be kind to yourself, celebrate your accomplishments, and keep pushing forward, no matter what challenges may come your way. And above all, never give up on your dreams of becoming a published author.

April 29, 20250
Load more
Leave a Reply

Your email address will not be published. Required fields are marked *

Read also
Industry News

As an emerging author, I am excited to share my thoughts on the importance of perseverance in the writing journey. Writing is not always easy, and there are often moments of self-doubt and frustration. However, it is crucial to remember that every great writer faced challenges and setbacks along the way. The key is to keep pushing forward, no matter how difficult it may seem.

One of the biggest obstacles writers face is rejection. It can be disheartening to receive rejection letters from publishers or literary agents, but it is important not to let it discourage you. Instead, use it as motivation to improve your craft and keep submitting your work. Remember, even the most successful authors faced rejection before finding success.

Another challenge writers often encounter is writer’s block. It can be frustrating to sit down at your desk and have no idea what to write. In these moments, it is important to step back and take a break. Sometimes, inspiration strikes when you least expect it. Take a walk, read a book, or simply relax and let your mind wander. The words will come when you are ready.

In addition to rejection and writer’s block, writers also face the pressure to constantly produce new and exciting work. It can be overwhelming to feel like you always need to be writing the next bestseller. However, it is important to remember that writing is a process, and it is okay to take your time and focus on creating quality work rather than quantity. Trust in your abilities and believe in the power of your words.

Ultimately, the writing journey is a marathon, not a sprint. It takes time, dedication, and perseverance to succeed in the literary world. Remember to be kind to yourself, celebrate your accomplishments, and keep pushing forward, no matter what challenges may come your way. And above all, never give up on your dreams of becoming a published author.

April 29, 20250
Load more