Magento Mayhem: Backdoored Extensions Haunt E-Commerce Giants After 6-Year Snooze
Magento extensions are backdoored, and it’s like a surprise party, but for cybercriminals! After hiding for six years, malicious code finally activated, compromising up to 1,000 e-commerce stores, including a $40 billion multinational. Sansec researchers detected the dormant threat, proving that patience isn’t just a virtue—it’s a hacker’s best friend!
Hot Take:
In a plot twist worthy of a cybersecurity thriller, Magento extensions have been caught snoozing on the job, only to wake up in 2025 and wreak havoc on e-commerce stores like a teenager left unsupervised at a party. Remember folks, it’s all fun and games until someone gets their data stolen!
Key Points:
– 21 Magento extensions have been found with a backdoor, affecting 500-1,000 e-commerce stores.
– The malicious code was injected as far back as 2019 but only activated in April 2025.
– Notable affected vendors include Tigren, Meetanshi, and MGS, with Sansec warning them of the breach.
– The backdoor allows for malicious activities like data theft and creating admin accounts.
– Users are advised to scan their servers for compromises and restore from clean backups if necessary.