backdoors

Backdoor Found in Popular Ecommerce Components

Backdoor discovered in 21 ecommerce applications from breached vendors Tigren, Magesolution (MGS), and Meetanshi. Malware active since Apr 20, affecting 500-1000 stores. Fake license checks enable unauthorized access. Users advised to scan for backdoors, especially those from these vendors. Vendor responses vary; backdoored packages are still available for download. Recommendations include using eComscan for detection and removing infected files.

https://sansec.io/research/license-backdoor

Over 4,000 Backdoors Hijacked by Registering Expired Domains

,

Over 4,000 backdoors hijacked via expired domains; researchers at WatchTowr Labs sinkholed communication from compromised systems, preventing further malicious use. They identified numerous infected systems, including government and educational institutions in multiple countries. Control of the hijacked domains was transferred to The Shadowserver Foundation for ongoing monitoring.

Over 4,000 backdoors hijacked by registering expired domains

Scroll to Top