Attacks leveraging an already fixed critical Magento vulnerability, tracked as CVE-2024-20720, have been launched against e-commerce websites to facilitate the distribution of a Stripe payment skimmer for financial data exfiltration, according to The Hacker News.
Article Link: E-commerce site data compromised via critical Magento flaw | SC Media