Vulnerability in e-Commerce Applications Leads to Credit Card Theft

A vulnerability has been reported in the e-commerce software called osCommerce. osCommerce is an open source e-commerce solution for running an online store front with minimal effort and cost. The attack takes advantage of multiple vulnerabilities and insecure configuration settings with osCommerce installations. As a result, an attacker is able to take complete control and/or plant an iFrame on these sites. Inline Frames (iFrames) are windows cut into your webpage that allow your visitor to view another page on your site or redirects users to another site. The attacker places a malicious link or page in an iFrame that would redirect the user to a malicious page that attempts to take advantage of several vulnerabilities on the client or visitor’s computer. The injection iframes currently contain the link named willysy.com/ or exero.eu/.

If the attack is successful, malware (currently known as JORIC.BRU) would be dropped onto the visiting user’s computer that would then attempt to steal information associated with login credentials and/or information associated financial institutions, such as credit card data. At this time, over 5 million web pages using osCommerce have been compromised.  Read More …