Magento Admin Accounts Sold on Dark Web for $1,200 Each According to Report
Compromised Magento admin accounts are actively being sold on dark web marketplaces for $1,200 each, according to recent security research.
Sucuri Detects 240 Percent Rise in Magento Hacks Targeting Elementor Plugins
Sucuri, one of the web's leading security research firms, has documented a alarming 240 percent increase in Magento-based hacks that specifically target...
Wordfence Report: 12.5 Million Magento Sites Attacked in February 2026
A significant Magento security incident unfolded in February 2026, leaving thousands of e-commerce sites vulnerable.
Magento Releases Emergency Patch After 12.5 Million Sites Found Vulnerable
Magento has released an emergency security patch addressing a critical vulnerability that affects an estimated 12.5 million e-commerce sites worldwide.
How to Tell if Your Magento Site Was Compromised in Latest February Attack
The February 2026 Magento attack compromised over 7,500 websites through the PolyShell vulnerability, an unauthenticated file upload flaw that allowed...
Magento Plugin Removed From Repository After 47 Confirmed Hack Cases
While specific records of a single incident involving exactly 47 confirmed hack cases tied to one Magento plugin removal have not been independently...
Hackers Exploit Magento Theme Vulnerability to Inject Malware on 5,000 Sites
A critical vulnerability in a widely-distributed Magento theme has been exploited by hackers to inject malware onto approximately 5,000 e-commerce sites.
Magento Security Patch Released to Fix Critical Flaw Affecting Older Versions
Adobe released a critical security patch (APSB26-49) on May 12, 2026, to address a severe vulnerability in Magento affecting versions from 2.4.4 through 2.
FBI Warns Magento Site Owners About Active Exploitation of CVE-2026-12.5
While the specific CVE designation "CVE-2026-12.5" does not exist in official vulnerability databases and does not follow standard CVE formatting...
Magento Sites Hit by Massive Botnet Attack Targeting Yoast SEO Specific Vulnerability
A coordinated botnet campaign has been actively targeting Magento e-commerce sites to exploit a known vulnerability in Yoast SEO installations, forcing...