Skip to main content

Tag: e commerce

12 articles

A dimly lit office interior with a single wooden desk and chair, papers and folders scattered on the surface, illuminated…

Amazon Fined $2.25M for Withholding Fraud Evidence

Amazon has been fined $2.25 million for allegedly blocking identity-theft victims from accessing records of fraudulent transactions, violating the Fair Credit Reporting Act. The company reportedly told some consumers that they couldn't access the requested records, adding to the frustration of those trying to recover from scams.

Analyst 207
South Korea's Personal Information Protection Commission headquarters interior with formal documents and a blurred seal in…

Coupang Fines $409 Million for Massive Data Breach

Coupang has been slapped with a whopping $409 million fine for a massive data breach that exposed the personal info of 37.55 million people, due to a lax safety management system and negligence in key security measures. The hefty penalty is part of a landmark enforcement action by South Korea's Personal Information Protection Commission.

Analyst 207
Server racks and computer hardware in a dimly lit e-commerce IT area.

CISA Warns of Exploited Magento Extension Flaw

A critical flaw in the Mirasvit Full Page Cache Warmer Magento extension, tracked as CVE-2026-45247, has been exploited by hackers, allowing them to execute remote code without authentication. This vulnerability, rated 9.8 on the CVSS scale, enables attackers to wreak havoc by supplying a malicious PHP object in the CacheWarmer cookie.

Analyst 207
Retail checkout counter with a WooCommerce point-of-sale terminal in the foreground and blurred store shelves in the…

Funnel Builder Flaw Exploited for WooCommerce Checkout Skimming

A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited, allowing attackers to inject malicious JavaScript into WooCommerce checkout pages and skim sensitive customer info. Over 40,000 online stores using the plugin may be at risk.

Analyst 207
Retail checkout counter with payment terminal and WooCommerce logo, laptop screen blurred with loading animation, hinting…

Funnel Builder Plugin Exploited to Inject Credit Card Skimmers

A vulnerability in the popular Funnel Builder plugin, used on over 40,000 websites, has been exploited to inject credit card skimmers into WooCommerce checkout pages, putting sensitive payment data at risk. This flaw allows attackers to sneak malicious code into checkout pages, harvesting valuable information from unsuspecting customers.

Analyst 207
Generic e-commerce setup with laptop on counter surrounded by packaging materials.

Škoda Discloses Data Breach After Online Shop Hack

Škoda's online shop was recently hacked, exposing customer data after attackers exploited a vulnerability in the e-commerce software. The company has since fixed the issue, alerted authorities, and is working with a forensics team to investigate.

Analyst 207
Laptop screen displays small, hidden SVG padlock image amidst code, with blurred phone and scattered credit cards nearby.

Hackers Conceal Credit Card Stealer in Tiny SVG Images

One tiny pixel can cause massive damage: hackers have successfully hidden credit card-stealing code inside a nearly invisible, one-pixel Scalable Vector Graphics (SVG) image, putting almost 100 Magento-based online stores at risk. This sneaky tactic allowed the malicious code to blend in with normal site assets, evading detection.

Analyst 207
Coupang Breach Exclusive: Critical Response to 34M

Coupang Breach Exclusive: Critical Response to 34M

The Coupang data breach affecting 34 million customers shows that stolen contact and profile details—even without payment or authentication theft—can fuel highly convincing phishing, impersonation and downstream fraud. Security leaders warn the real damage is erosion of trust, not just downtime.

Analyst 207
Coupang Confirms Stunning, Damaging Leak of 34M Customers

Coupang Confirms Stunning, Damaging Leak of 34M Customers

If youve shopped on Coupang, keep an eye on your accounts: the company confirmed a suspected cyber-attack exposed personal data for about 34 million customers, prompting a police probe and warnings about fraud. The breach lays bare how one‑click convenience concentrates risk and is fueling renewed calls for tougher data safeguards.

Analyst 207
Fraud Fears: Exclusive Reassuring Outlook for Holidays

Fraud Fears: Exclusive Reassuring Outlook for Holidays

Worried about holiday fraud? ICO data shows no Q4 2024 spike in reported data breaches — a reassuring sign, but one that forces us to ask whether criminals have gone stealthier or our reporting systems are missing the real threat.

Analyst 207
Critical WordPress Plugin Bugs Cause Stunning Damage

Critical WordPress Plugin Bugs Cause Stunning Damage

Three critical WordPress plugin vulnerabilities disclosed in 2024 are already being weaponized in the wild, forcing site owners to weigh immediate patching (and potential downtime) against the very real risk of rapid, widespread compromise. If your site uses plugins, now’s not the time to procrastinate—automated scanners and exploit kits can turn one unpatched flaw into a mass breach within hours.

Analyst 207
Jingle Thief Exclusive: Hackers Devastate Gift Cards

Jingle Thief Exclusive: Hackers Devastate Gift Cards

Exclusive: Hackers are turning gift cards into easy targets—our deep dive reveals how gift card fraud works, who’s at risk, and simple steps to protect your balance.

Analyst 207