Categories: Articles

SnapFast discovers new “mage.jpg” malware

mage.jpg malware

Today we are featuring Winston from SnapFast, a Magento optimized hosting provider, which would like to alert our readers for a newly discovered Magento malware which is, very descriptively, called the “mage.jpg” malware.

Why the mage.jpg malware?

When the hack (which manifests in 
<span class="text">app/Mage.php</span>
) intercepts payment details such as credit card numbers and billing addresses, it encrypts the data and saves it as a fake mage.jpg file in the Magento root directory. This file can later be downloaded, decrypted, and used for no good. The malware even includes a clever way for the hackers to remotely delete the mage.jpg file after they’ve downloaded its contents. This way, they can reduce the trace left behind and thus the chances of being discovered. There are multiple ways that this – and other – malicious code could be injected into a Magento installation. In the article, SnapFast covers a few ways (think malicious third party modules or a compromised server) that would-be hackers could potentially use to inject this or similar malicious code into your Magento installation. If it has been a while you have verified the integrity and security of your Magento installation and its environment, this might be a good time to do it.

More details

For full details about the hack and to view the source code, visit the original article on the SnapFast blog which contains all the details. If you’ve ever had to deal with a hack or malware infecting your Magento store, please leave a comment below and let us know the details!
Magenticians

View Comments

  • The timing of this post is suspicious. This sounds like the kind of thing that could be a April Fool's joke, although based on the source article, it looks legitimate.

    • Unfortunately it's no joke. We had a client and their dev team stumble upon the issue a few days ago. Since then the same dev team has scanned a few of the other sites they manage and found the same malware in a handful of others. Thankfully we haven't detected it on any other of our customer's stores yet.

Leave a Comment
Share
Published by
Magenticians
Tags: magentomalware
10 years ago

Recent Posts

How to Improve Customer Experience Using a CRM System?

Your greatest possible competitive advantage can be your clients and the interactions they have with… Read More

8 months ago

Which KPIs Matter Most in Digital Marketing Analytics?

Digital marketing KPIs are measurable values that marketing teams use to track progress toward desired… Read More

8 months ago

Top 5 Fraud Prevention and Detection Software to Safeguard Your Business

In today's digital age, fraud poses a significant threat to businesses of all sizes. As… Read More

11 months ago

A Guide to Understanding the Major Types of Financial Crimes in 2024

Financial crimes continue to evolve and proliferate in our increasingly digital, global economy. From complex… Read More

11 months ago

Building Employee Trust and Dedication – A Complete Guide

In the highly competitive modern workplace, trust, and employee loyalty are crucial factors for long-term… Read More

1 year ago

12 Winning Strategies for Small Businesses Marketing

In the ever-evolving world of small business developing and implementing effective marketing strategies is critical to… Read More

1 year ago

Tutorials

Resources

Quick Links