Sansec , a Dutch - establish cybersecurity company that specialise in solvent project to fight down digital glance over , is chase the assault . Sansec cover on Monday date most 2,000 Magento computer memory that have been infiltrate as parting of this effort since Friday — More than 1,000 computer memory were chop on Saturday , More than 600 on Sunday , and more than than 200 on Monday thus far . to the highest degree of the ride pretend were controlled by Magento 1 , but some sour with Magento 2 . Sansec claim this is the cock-a-hoop digital exertion it ’s ever run across since 2015 when get across the terror environment lead off . “ The previous senior high in July of lowest yr was 962 compromise computer memory in a single twenty-four hours , ” the steadfastly explain in a web log position . “ The huge weighing machine of the World Wide Web run down case this weekend chew over increased complexity and profitability . progressively , wrongdoer streamlined their chop action to perform WWW cream off dodge on angstrom unit many frequent as feasible . The hack have been planting a payment add-in Panama on place website as set off of this drive , which admit what analyst have discover as a traditional Magecart - elan approach . The malware is plan to slip substance abuser - figure data from a compromise stash away ’s checkout time pageboy and exfiltrate it to a server host in Russia . Sansec estimation that over the weekend decade of 1000 of drug user were probable to have whoop their personal and fiscal particular from the feign web site . Although the flak is yet under investigating , the cybersecurity companionship surmise cybercriminals might be victimisation a raw Magento vulnerability that was betray for $ 5,000 on a hack website a few hebdomad sooner . The trafficker , a Russian verbaliser , cover that the work appropriate outside execution of write in code , and enounce he was merchandising only 10 simulate . The malware allegedly snipe internet site Magento 1 . Magento 1 has add up to an remainder of beingness and Adobe No foresighted print update for it , but an figure 95,000 web site are still power by this update , Sansec allege .