On 01/05/20 our Magento website was compromised which forced over 3200+ fraudulent transactions through our payment processing gateway. These transactions were processing at a rate of one every 1-5 seconds and originated from the servers' host IP Address.
After an analysis, it was evident that multiple files had been recently changed via a malicious script that was placed by either elevated user permissions from a vulnerability on the Magento core itself or the one-step checkout module which was being used for the checkout process.
As a precaution, the host was suspended to ensure that no data or any further data was stolen and any infection would not replicate into other hosts shared by the same server.
We need a report to confirm the above and give details on what happened and what files have been compromised and how the website was compromised.
20 фрилансеров(-а) готовы выполнить эту работу в среднем за $184
Hello, I have read your job details carefully and I can do your work if you will provide me more details of the project. I will definitely give you a better solution to your problem. Thanks Ambient Infotech
Hello there, I have over 10 years experience as a Senior Linux System Administrator and I'm also a cPanel certified admin. I'm pretty sure that I'll be able to help you with your project. Regards, Bogdan S
Hello mate I am expert Magento programmer & server administrator & i am sure to audit malicious script in your site & server. after I will report you how to fix it. Most probably I will fix it. Thank you
Hello sir i will fix this issue i need to check site and logs full please ping me back so we can discuss about the project and provide you solutions Thanks
Hi, I am used to validating computerized system including confirming the system security. I have been working to validate computerized system for more than 2 years.