The Hacker News

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

Magento flaw allows unauthenticated file uploads up to 2.4.9-alpha2, enabling RCE or takeover, exposing stores to attack risk ...

Huge numbers of web stores are facing attack from dangerous new malware

Hackers are actively using PolyShell against major brands and other ecommerce sites.
Mashable SEA on MSN

Hackers are exploiting a vulnerability in lots of e-commerce sites

Magento and Adobe Commerce sites are affected, but a fix is in the works.

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 ...
SecurityWeek

Thousands of Magento Sites Hit in Ongoing Defacement Campaign

Over 7,500 Magento sites, including major brands and government services, were hit in an ongoing mass-defacement campaign.
ZDNet

Magento online stores hacked in largest campaign to date

Want a good tech job? Then you need to know Linux and open-source software. One of the best ways to learn is via a Linux Foundation course. Read now More than 2,000 Magento online stores have been ...