A Cisco-branded merchandise website that's hosted and administered by a third-party supplier was temporarily taken offline while a security issue was addressed.
Based on our investigation, the issue impacted only a limited number of site users, and those users have been notified. No credentials were compromised.
The unknown attacker(s) reportedly exploited CVE-2024-34102, a critical, 9.8-rated vulnerability in Adobe Magento software, widely used by eCommerce websites.
Criminals automated the attack to scale to thousands of sites, and multiple proof-of-concept exploits popped up on GitHub and elsewhere.
Collection
[
|
...
]