Have A Question? Call Us: (866) CLARKE6 Client Login
Clarkes.Team
(866) CLARKE6 Get Started Client Portal
Back to Blog
Security 3 min read

Important Alert: Is Your Adobe Commerce or Magento Store at Risk?

cPanel is a popular control panel in web hosting designed to make managing your website and hosting packages easier. Whether you're overseeing email accounts, managing databases, or monitoring server performance, cPanel simplifies these tasks, making them accessible for non-technical users.

SC

Steven Clarke

Clarkes.Team

Important Alert: Is Your Adobe Commerce or Magento Store at Risk?

If you're using Adobe Commerce or Magento to run your e-commerce shop, you need to be aware of a new and severe security threat called the CosmicSting exploit. Security researchers say nearly 5% of all Adobe Commerce and Magento stores have already been compromised. 5% is a massive number of websites, considering Magento is used by over 670 million websites. This is affecting store owners worldwide, and the number of attacks continues to grow every day. What is Magento?

Magento is a very popular, open-source e-commerce software platform used by many businesses to build and manage online stores. Think Shopify or Woocommerce—it’s competing software to power your e-commerce brand. Magento is part of Adobe Commerce, which helps businesses with everything from handling payments to managing customer accounts. Many online retailers prefer Magento because of its flexibility and wide range of features. Unfortunately, just like any other system, Magento is also vulnerable to attacks if not properly updated and maintained. We stress routine maintenance here at Clarkes.Team to ensure you don’t have these issues.

What’s Happening?

A dangerous flaw (labeled CVE-2024-34102) was discovered in Adobe Commerce and Magento, which hackers are now exploiting. Malicious attackers can exploit this vulnerability to gain access to your store’s most sensitive information, including customer payment details. Once inside, they can use this information to steal data or even take over your entire store. In fact, this flaw is so critical that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added it to their list of Known Exploited Vulnerabilities, urging all store owners to take immediate action.

What Can You Do to Protect Your Store?

If you run a Magento or Adobe Commerce store, simply updating your system isn’t enough to fix the issue. You also need to take extra steps to ensure your store is secure. Here’s a simple guide on what you should do:

Key Points

  • Scan Your Store for Malware: Use a server-side malware scanner to detect if your store has already been compromised. We have several scanners that we use if you need assistance with this step.
  • Upgrade Your Magento Version: The latest version of this software, Magento 2.4.7-p3,  includes the patch for this vulnerability. You should aim to always stay on the latest & greatest version.
  • Rotate Your Encryption Keys: Even after upgrading, hackers may still have access to your store if you don’t change your encryption keys. This is essential for securing your site.
  • Disable Old Encryption Keys: After rotating your keys, manually disable the old ones to prevent attackers from using them to access your store.
Need Help? Securing your store can be time-consuming and overwhelming, especially if you're not familiar with the technical side of things. That’s where we come in! At Clarkes.Team, we specialize in keeping your online store safe and running smoothly. If you’re concerned about this Magento vulnerability and need assistance making sure your store is fully protected, read more about the details here or reach out to us for professional help. We can handle all the technical work for you, ensuring your store stays secure.

Need Help?

Don’t wait until it’s too late—take action today to safeguard your business and protect your customers from potential data theft. Contact us today.

Get Expert Help

Need Help With Your Infrastructure?

Our team of senior engineers can help you implement these best practices. Schedule a free consultation to discuss your specific needs.

Schedule a Call View Services
Tags: Security Vulnerabilities
Share this article:

Related Articles

More insights from our Security category

Uncategorized

World Backup Day: Why It Is Vital For You To Backup Everything

A backup is a copy of your data saved outside your primary device, which you can restore anytime. Your data can include anything from work files to personal items like family pictures, eBooks, and messages. In simpler terms, a backup is a copy of your important data saved somewhere safe where you can always access it if and when needed.

March 31, 2025 Read more
Uncategorized

Proven Tips for Optimizing cPanel Server Performance

There are many benefits attached to using cPanel to manage your websites. But these benefits only last as long as you regularly update and maintain your cPanel server. Failure to optimize your cPanel server can lead to performance issues over time.

March 13, 2025 Read more
Uncategorized

Why Offsite Backups are Critical for Effective Data Protection

Offsite backups are stored outside your business environment. The servers and storage devices holding your backups are not within the physical reach of your business and will be unaffected by any disasters that hit your onsite backups.

November 21, 2024 Read more
← Previous Why Regular Maintenance & Updates are Crucial for Your cPanel Server Next → Why Offsite Backups are Critical for Effective Data Protection

Ready to Elevate Your IT Infrastructure?

Let's discuss how our team can help secure, optimize, and scale your systems.

Schedule Free Consultation (866) CLARKE6