Recently, over 4,000 online stores running Adobe Commerce and Magento software have been hacked through a critical vulnerability known as “CosmicSting” (CVE-2024-34102). This flaw allows attackers to steal sensitive information by injecting malicious payment skimmers into checkout processes. These attacks have compromised well-known retailers like Ray-Ban, National Geographic, and Whirlpool, with threat groups exploiting unpatched systems at a rate of several hacks per hour.
How Do Cosmicsting Campaigns Target Adobe Commerce Stores?
In these sophisticated attacks, cybercriminals exploit vulnerabilities in Adobe Commerce and Magento stores, gaining unauthorized access to backend systems and injecting malicious code. Once inside the system, the hackers can plant malware, steal sensitive information such as customer data and payment details, and disrupt the normal functioning of online stores. The ultimate goal is financial gain and exploiting the compromised data for illegal activities.
Source: Sansec
What Is the Impact of These Hacks on Business Owners?
The impact of such cyber-attacks on business owners can be devastating. Not only do they face financial losses due to potential data breaches and theft, but they also risk damaging their reputation and losing the trust of their customers. In addition, the downtime caused by these attacks can result in lost sales and a decline in customer loyalty. It is essential for business owners to take immediate action to secure their online stores and protect their valuable data.
How Can Businesses Protect Themselves from Cosmicsting Attacks?
To safeguard their Adobe Commerce and Magento stores from CosmicSting attacks, business owners must prioritize cybersecurity measures. This includes regularly updating their e-commerce platforms with the latest security patches, implementing robust password policies, and conducting regular security audits to identify and address any vulnerabilities. Additionally, investing in cybersecurity training for employees and deploying advanced threat detection technologies can help detect and mitigate potential attacks before they cause significant harm.
Affected Versions
The affected versions include various iterations of Adobe Commerce and Magento Open Source. Users of versions before the following are urged to take immediate action:
- Adobe Commerce: Adobe Commerce 2.4.7 and earlier, Adobe Commerce Extended Support 2.4.3-ext-7 and earlier
- Adobe Commerce Webhooks Plugin: Adobe Commerce Webhooks Plugin versions 1.2.0 to 1.4.0
- Magento Open Source: Magento Open Source 2.4.7 and earlier
Solution
Adobe has provided updated versions APSB24-40 for both Adobe Commerce and Magento Open Source to address these vulnerabilities. Administrators are urged to update to versions like Adobe Commerce 2.4.7-p2 or Magento 2.4.7-p3. Additionally, rotating encryption keys and applying hotfixes are strongly recommended to prevent further exploitation
You can find detailed information here: Adobe Commerce Security Update: APSB24-40.
Conclusion
The recent surge in CosmicSting campaigns targeting Adobe Commerce and Magento stores is a cause for concern for business owners worldwide. By understanding the tactics used by cybercriminals in these attacks and taking proactive steps to enhance their cybersecurity defenses, businesses can protect themselves from falling victim to such malicious activities. It is crucial for online retailers to prioritize security and invest in robust cybersecurity measures to safeguard their valuable data and maintain the trust of their customers.