MSN on MSN

CISA added a maximum-severity flaw in a popular Magento store-cache plugin to its must-patch list after attackers began hijacking online shops

Online merchants running Magento 2 with the Mirasvit Full Page Cache Warmer plugin face an urgent patching deadline after ...
ZDNet

FBI warns about attacks on Magento online stores via old plugin vulnerability

The FBI says hackers are exploiting a three-year-old vulnerability in a Magento plugin to take over online stores and plant a malicious script that records and steals buyers' payment card data. This ...
Threat Post

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws

Two flaws – one of them yet to be fixed – are afflicting a third-party plugin used by Magento e-commerce websites. Researchers have disclosed two flaws that could enable remote code execution attacks ...