Magento is an open-source content management system for e-commerce web sites scoring the top rank Alexa 1 million top sites.
Perhaps the reason Magento stands above other CMS platforms is the freedom to have total control of design elements by being open source software that developers can easily modify.
Magento supports a Web template system which generates multiple similar-looking pages and customizes theme. Further the administrator can add features and functionality by creating or installing add-ons and plug-ins.
More than 240,000 merchants worldwide put their trust in our eCommerce software. Magento’s eCommerce platform gives you the tools you need to attract more prospects, sell more products, and make more money. It’s what we do.
Ebay’s widely used Magento platform is not safe from the eyes of cyber criminals anymore.
As per the records of National Vulnerability Database, Magento platform had eight vulnerabilities in 2015, a 300% increase over the previous year’s count.
In April 2015, Magento Shoplift exploits were seen in the Wild that allowed complete takeover of a vulnerable Magento site. The exploit leveraged a SQL Injection (SQLi) by inserting a new admin_user to the database.
In June 2015, a new wave has been explored It seems though that the attacker is exploiting a vulnerability in Magento core or some widely used module/extension. Using this vector, the attacker is able to inject malicious code into the Magento core file.
After this code is injected, nothing else happens – attacker has everything he needs to successfully spy and steal sensitive/personal information from the infected website. In fact, the attacker gets the content of every POST request.
Today 1 of every 4 online businesses chooses Magento but attacks concerning it on the rise.
I think this article will fully complement you article. PLease continue publishing helpful topics like this. Regards, from Always Open Commerce