HomeBlogA vulnerability in a WordPress plugin
Back
BACK TO BLOG LIST
A vulnerability in a WordPress plugin
29.06.2020

Magecart JavaScript code was put into the EXIF metadata of images by hackers – the code was then executed by the stores which got impacted. Malwarebytes research claims that fraud based on hiding credit card skimmers in image format files is a rare one.

The researchers were going to take the exploit analysed by them for a version of a favicon scam, but this one appeared to be radically different. WooCommerce plugin used by WordPress gave way to the malicious code.

JavaScript makes it possible to compromise practically any platform and gadget due to its popularity and omnipresence. This time the loaded code devoured names, addresses and credit card details.

BACK TO BLOG LIST
Letter Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyber incidents.
FileAuditor
DLP
Risk Monitor
ProfileCenter
SIEM
MSS
MSSP
Cloud Deployment
Contact
About Our Company
Our Clients
Press About Us
Press Kit
White Papers
Third-party integration
Research
Practices and use cases
Videos
Company News
Product News
Events
Blog
Compliance
Data Loss Prevention
Investigation
Data at Rest Discovery
Data Encryption
Data Visibility
Data Classification and Protection
Time Tracking and Employee
Monitoring
Corporate Fraud Mitigation
C-level executive
Risk manager
Internal audit officer
Compliance manager
Information security analyst
Chief Human Resources Officer
Business Services
Education
Financial Services
Government
Insurance
Manufacturing
Healthcare
Retail
Energy
Hospitality
Construction
SearchInform partners
Become a partner
Partner login
SearchInform products are recognized by
Gartner The Radicati Group
Follow us:
© 2025 SearchInform LTD All rights reserved.
Terms of Use
Licence
Privacy&Cookies
Cookie settings