![Behind the Google shopping ad masks. [Research Saturday]](https://imgv2-1-f.scribdassets.com/img/audiobook/673073785/198x198/f92f771a14/1695457640?v=1)
32 min listen
Behind the Google shopping ad masks. [Research Saturday]
FromCyberWire Daily
ratings:
Length:
15 minutes
Released:
Sep 23, 2023
Format:
Podcast episode
Description
Maxim Zavodchik from Akamai joins Dave to discuss their research on "Xurum: New Magento Campaign Discovered." Akamai researchers have discovered an ongoing server-side template injection campaign that is exploiting digital commerce websites. This campaign targets Magento 2 shops, and was dubbed Xurum in reference to the domain name of the attacker’s command and control (C2) server.
The research states "The attacker uses an advanced web shell named “wso-ng” that is activated only when the attacker sends the cookie “magemojo000” to the backdoor “GoogleShoppingAds” component."
The research can be found here:
Xurum: New Magento Campaign Discovered
Learn more about your ad choices. Visit megaphone.fm/adchoices
The research states "The attacker uses an advanced web shell named “wso-ng” that is activated only when the attacker sends the cookie “magemojo000” to the backdoor “GoogleShoppingAds” component."
The research can be found here:
Xurum: New Magento Campaign Discovered
Learn more about your ad choices. Visit megaphone.fm/adchoices
Released:
Sep 23, 2023
Format:
Podcast episode
More Episodes from CyberWire Daily
Privacy nightmare or useful tool? by CyberWire Daily