Magento Shoplift - Update - Are you Affected?
This is a simple overview of what the Shoplift problem is and how to re-gain control of your website.
Since Check Point Technologies announced the critical vulnerability – known as Magento Shoplift (SUPEE-5344) – we have been contacted by a significant numbers of online businesses that have been compromised through this vulnerability.How do you recover control of your online business?
Firstly, you need to understand what Magento Shoplift is so that you can devise a strategy to secure your online business.What is Magento Shoplift?
Magento Shoplift is a vulnerability that allows unauthenticated users to access administration pages on the website – and exploit certain pages via SQL Injection.What does this mean?
It means that with this level of access, an attacker can perform admin functions, such as:
- Adding new users
- Altering product data
- Altering the website (see our short video on re-direct payments and the compromise we illustrate in there)
- Steal your customer personal data (email addresses, telephone numbers, account passwords, addresses, credit card data)
- Setting your website up as a malware distributor or worse.
In short, if you have been affected, you need to act now to protect your business as the effects could be hugely damaging for your business brand and finances.
These are (mostly) highly effective and focused criminals with a high level of skill and technical capability – they are after your business
Read how to regain control of your website in a few straightforward steps at:http://blog.foregenix.com/magento-shoplift-update-are-you-affected #magento #shoplift #cybersecurity