Widespread Retail Hacks Exploit Adobe Commerce, Magento Vulnerabilities

A significant wave of cyberattacks beginning in the summer of 2023 has put the spotlight on vulnerabilities in Adobe Commerce and Magento software, resulting in the compromise of sensitive customer information across numerous online stores. Cybercriminals have meticulously exploited these vulnerabilities, employing digital payment skimmers to gain unauthorized access to critical data.

Extent of the Breach

The scale of this breach is alarming, with over 4,300 merchants falling victim to these cyberattacks, including prominent names such as Cisco and National Geographic. The attacks are noteworthy for their rapid escalation, peaking at a rate of five stores per hour. This infiltration underscores the need for robust cybersecurity measures in the e-commerce sector.

Vulnerability Details

Two key vulnerabilities are at the heart of this cyberattack campaign: CVE-2024-34102, also known as CosmicSting, and CVE-2024-2961. The CosmicSting flaw enables attackers to steal credentials and secret cryptographic keys, which in turn allows them to hijack customer data and insert payment skimmers. When combined with CVE-2024-2961, attackers gain the ability to execute code and install backdoors on servers, creating additional pathways for exploitation.

Attack Timeline and Discovery

The campaign’s discovery can be credited to security researcher Sergey Temnikov, who identified the threat and reported it to HackerOne in December 2023. Adobe was subsequently alerted in January 2024, and a patch to address these vulnerabilities was released in June. Despite this, many stores remained vulnerable due to the complex and technical nature of the remediation required to fully secure the affected systems.

Impacted Parties

Both minor and major online merchants have been targeted in these attacks. Attack groups like Ondatry have systematically exploited these vulnerabilities to steal data, exploiting weaknesses in the affected systems. The organizations that have fallen victim to these hacks must go through the painstaking process of manually invalidating stolen cryptographic keys to thwart further unauthorized access.

Remediation Efforts

In response to the vulnerabilities, Adobe rolled out a security update followed by a hotfix aimed at disabling old encryption keys. Nevertheless, the process is intricate and prone to errors, posing significant challenges for effective and timely implementation. This complexity has left many merchants grappling with ongoing security concerns, despite the availability of patches and fixes.

Overarching Trends and Consensus Viewpoints

Within the cybersecurity community, there is a consensus on the persistent threat posed by digital skimming attacks on e-commerce platforms. Experts underscore the urgent need for timely patching and rigorous key management practices to combat these threats. The growing sophistication of cybercriminals, coupled with their use of automated tools to exploit known vulnerabilities, has been a recurring theme in various cybersecurity incidents.

Summary of Main Findings

The CosmicSting vulnerability has led to widespread exploitation of Adobe Commerce and Magento stores, revealing critical weaknesses in widely used e-commerce platforms. Although efforts to patch these vulnerabilities are ongoing, many online merchants remain vulnerable due to the technical complexity of the required remediation steps. The financial and reputational damages from these breaches are substantial, highlighting the importance of robust cybersecurity measures and swift response actions.

Conclusion

Starting in the summer of 2023, a notable surge in cyberattacks has revealed critical weaknesses in Adobe Commerce and Magento software. These breaches have compromised sensitive customer information across a multitude of online stores, drawing significant attention to the issue. Cybercriminals have skillfully exploited these vulnerabilities, using digital payment skimmers to gain unauthorized access to crucial data. This wave of attacks highlights the urgent need for heightened security measures within e-commerce platforms. Businesses using Adobe Commerce and Magento must now prioritize updating their security protocols to protect both their operations and their customers’ personal information. The spotlight on these vulnerabilities underscores the importance of proactive cybersecurity practices. As cyber threats become more sophisticated, the capacity to safeguard digital transactions remains paramount. This situation serves as a wake-up call for online retailers to regularly test and fortify their defenses against potential breaches. Only through diligent effort can they ensure the safety of customer data in an increasingly digital marketplace.

Explore more

Are Contractors At Risk Over Prevailing Wage Compliance?

The contracting industry faces escalating scrutiny in prevailing wage compliance, notably exemplified by the Lipinski and Taboola v. North-East Deck & Steel Supply case. Contractors across the United States find themselves navigating intricate wage laws designed to ensure fair compensation on public works projects. This burgeoning issue poses a significant liability risk, creating a pressing need for clarity and compliance

Deepfakes in 2025: Employers’ Guide to Combat Harassment

The emergence of deepfakes has introduced a new frontier of harassment challenges for employers, creating complexities in managing workplace safety and reputation. This technology generates highly realistic but fabricated videos, images, and audio, often with disturbing consequences. In 2025, perpetrators frequently use deepfakes to manipulate, intimidate, and harass employees, which has escalated the severity of workplace disputes and complicated traditional

Is Buy Now, Pay Later Fueling America’s Debt Crisis?

Amid an era marked by economic uncertainty and mounting financial strain, American households are witnessing an alarming escalation in consumer debt. As the “buy now, pay later” (BNPL) services rise in prominence, they paint an intricate landscape of convenience juxtaposed with potential long-term economic consequences. While initially appealing to consumers seeking to navigate the challenges of inflation and stagnant wages,

AI-Powered Coding Revolution: Cursor and Anthropic’s Claude

Redefining Software Development with AI The integration of artificial intelligence into software development has become a groundbreaking force transforming the landscape of coding in recent years. AI models like Claude are playing a critical role in enhancing productivity, automating repetitive tasks, and driving innovation within the programming industry. This evolution is not just about technology advancing for its own sake;

How Will AI Shape the Future of DevOps Automation Tools?

In an era marked by rapid technological advancements, the DevOps Automation Tools market is undergoing a significant transformation, with artificial intelligence playing a pivotal role. In 2025, this sector’s remarkable expansion is underscored by its substantial market valuation of USD 72.81 billion and a 26% compound annual growth rate projected through 2032. Organizations worldwide are capitalizing on AI-driven orchestration and