Sansec

Critical Adobe Commerce, Magento vulnerability under attack (CVE-2025-54236)

October 23, 2025

Attackers are trying to exploit CVE-2025-54236, a critical vulnerability affecting Adobe Commerce and Magento Open Source, Sansec researchers have warned. The company blocked …

Microsoft, Adobe, SAP deliver critical fixes for September 2025 Patch Tuesday

September 10, 2025

On September 2025 Patch Tuesday, Microsoft has released patches for 80+ vulnerabilities in its various software products, but the good news is that none of them are actively …

Attackers are searching for online store backups in public folders. Can they find yours?

February 7, 2023

Too many online store administrators are storing private backups in public folders and exposing database passwords, secret API keys, administrator URLs and customer data to …

Attackers mount Magento supply chain attack by compromising FishPig extensions

September 14, 2022

FishPig, a UK-based company developing extensions for the popular Magento open-source e-commerce platform, has announced that its paid software offerings have been injected …

Magecart Group 8 skimmed card info from 570+ online shops

July 8, 2020

Your payment card information got stolen but you don’t know how, when and where? Maybe you shopped on one of the 570 webshops compromised by the Keeper Magecart group …

Magecart attackers hit Claire’s, Intersport web shops

June 15, 2020

Magecart attackers have compromised web shops belonging to large retail chains Claire’s and Intersport and equipped them with payment card skimmers. Claire’s The …

British Airways is facing £183 million fine for 2018 data breach

July 8, 2019

The UK Information Commissioner’s Office (ICO) wants British Airways to pay a £183.39 million (nearly $230 million) fine for failing to protect personal and financial …