{"id":4272,"date":"2020-10-30T21:03:52","date_gmt":"2020-10-30T20:03:52","guid":{"rendered":"https:\/\/webhosting.de\/?p=4272"},"modified":"2025-02-19T18:56:21","modified_gmt":"2025-02-19T17:56:21","slug":"online-skimming-1-000-english-online-shops-affected","status":"publish","type":"post","link":"https:\/\/webhosting.de\/en\/online-skimming-1-000-deutsche-online-shops-betroffen\/","title":{"rendered":"Online skimming: 1,000 German online shops affected"},"content":{"rendered":"

The German Federal Office for Information Security (BSI) has information that at least 1,000 German Online<\/span>-Shops<\/span> from Online Skimming<\/span> are affected. Benefit from this Cyber<\/span>-criminal security vulnerabilities in outdated versions of the Shop software<\/span>to introduce malicious code. This code then spies out the payment information of the customers during the ordering process and transmits it to the perpetrators. Affected are Online<\/span>-Shops<\/span>which are based on the widely used Software<\/span> Magento based.<\/p>\n

The infiltrated code and the associated data outflow is usually not visible to users. The BSI currently has no information about the extent of the payment data already released by these attacks.<\/p>\n

Based on an analysis carried out by a developer of security tools for Magento, in September 2016 almost 6,000 of Online Skimming<\/span> concerned Online<\/span>-Shops<\/span> identified, including several hundred Shops<\/span> German operator. CERT<\/abbr>-The Federal Government thereupon informed the respective responsible network operators in Germany of the affected Online<\/span>-Shops. According to current findings, this infection has not yet been removed by many operators or the Server<\/a><\/span> have been compromised once again. The vulnerabilities in Magento exploited by the attackers were exploited by the shop operators despite existing Software updates<\/span>apparently not closed. This allows Cyber<\/span>-criminals to continue using payment data and other personal data entered when placing orders. Data<\/a> of customers. The number of currently known affected Online<\/span>-Shops <\/span>in Germany has risen to at least 1,000 as a result.<\/p>\n

The CERT<\/abbr>-Today, the German Federal Office for Information Security (Bund des BSI) has again informed the responsible network operators in Germany about the Online<\/span>-Shops<\/span> in their networks and asks Provider<\/span>to forward the information to their customers (shop operators).<\/p>\n

\"Unfortunately, it is still the case that many operators fail to secure their online shops<\/a> act very carelessly. A large number of stores are running outdated software versions that contain several known security vulnerabilities\"<\/q>explains BSI President Arne Sch\u00f6nbohm. \"Operators must live up to their responsibility for their customers and secure their services quickly and consistently\".<\/q><\/p>\n

Liability of the shop operator<\/h3>\n

Under Article 13(7) TMG<\/abbr> are operators of Online<\/span>-Shops<\/span> is obliged to maintain their systems in accordance with the state of the art<\/a> to protect against attacks. A basic and effective measure for this is the regular and quick installation of available security updates.<\/p>\n

The BSI points out at this point that the obligation to secure systems is not only for companies, but also for all other business operators of Websites<\/span> applies. This also includes, for example, websites of private individuals or associations if their operation is intended to generate income on a permanent basis. This is already assumed if paid advertising in the form of banners is placed on websites.<\/p>\n

Operator of Online<\/span>-Shops<\/span> based on Magento can be used with the free service MageReport<\/a> check whether your shop system has known security holes and is affected by the current attacks. Detailed information on how to fix each detected problem is provided.<\/p>","protected":false},"excerpt":{"rendered":"

Dem Bundesamt f\u00fcr Sicherheit in der Informationstechnik (BSI) liegen Informationen vor, nach denen aktuell mindestens 1.000 deutsche Online-Shops von Online-Skimming betroffen sind. Dabei nutzen Cyber-Kriminelle Sicherheitsl\u00fccken in veralteten Versionen der Shopsoftware, um sch\u00e4dlichen Programmcode einzuschleusen. Dieser sp\u00e4ht dann beim Bestellvorgang die Zahlungsinformationen der Kunden aus und \u00fcbermittelt sie an die T\u00e4ter. Betroffen sind Online-Shops, die auf der weit verbreiteten Software Magento basieren. Der eingeschleuste […]<\/p>\n","protected":false},"author":1,"featured_media":1084,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[685,678],"tags":[301,302,303,304],"class_list":["post-4272","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein","category-ecommerce","tag-bsi","tag-hack","tag-magento","tag-skimming"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":"685","rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":"678","rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":null,"_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":"1","_edit_lock":"1604486480:1","_oembed_e7b913c6c84084ed9702cb4feb012ddd":null,"_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":null,"_oembed_time_03514b67990db061d7c4672de26dc514":null,"rank_math_news_sitemap_robots":"index","rank_math_robots":["index"],"_eael_post_view_count":"4685","_trp_automatically_translated_slug_ru_ru":null,"_trp_automatically_translated_slug_et":"online-skimming-1-000-saksa-online-kauplused-saadavaks","_trp_automatically_translated_slug_lv":"online-skimming-1-000-german-online-shops-affected","_trp_automatically_translated_slug_fr_fr":null,"_trp_automatically_translated_slug_en_us":null,"_wp_old_slug":null,"_trp_automatically_translated_slug_da_dk":null,"_trp_automatically_translated_slug_pl_pl":null,"_trp_automatically_translated_slug_es_es":null,"_trp_automatically_translated_slug_hu_hu":null,"_trp_automatically_translated_slug_fi":"online-skimming-1-000-saksalaiset-online-kaupat-vaikuttavat","_trp_automatically_translated_slug_ja":"%e3%82%aa%e3%83%b3%e3%83%a9%e3%82%a4%e3%83%b3%e3%82%b9%e3%82%ad%e3%83%9f%e3%83%b3%e3%82%b0%e3%81%ae%e5%bd%b1%e9%9f%bf%e3%82%92%e5%8f%97%e3%81%91%e3%81%9f%e3%83%89%e3%82%a4%e3%83%84%e3%81%ae%e3%82%aa","_trp_automatically_translated_slug_lt_lt":null,"_elementor_edit_mode":null,"_elementor_template_type":null,"_elementor_version":null,"_elementor_pro_version":null,"_wp_page_template":"default","_elementor_page_settings":null,"_elementor_data":null,"_elementor_css":null,"_elementor_conditions":null,"_happyaddons_elements_cache":null,"_oembed_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_time_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_time_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_59808117857ddf57e478a31d79f76e4d":null,"_oembed_time_59808117857ddf57e478a31d79f76e4d":null,"_oembed_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_time_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_81002f7ee3604f645db4ebcfd1912acf":null,"_oembed_time_81002f7ee3604f645db4ebcfd1912acf":null,"_elementor_screenshot":null,"_oembed_7ea3429961cf98fa85da9747683af827":null,"_oembed_time_7ea3429961cf98fa85da9747683af827":null,"_elementor_controls_usage":null,"_elementor_page_assets":[],"_elementor_screenshot_failed":null,"theplus_transient_widgets":["tp-video-player"],"_eael_custom_js":null,"_wp_old_date":null,"_trp_automatically_translated_slug_it_it":null,"_trp_automatically_translated_slug_pt_pt":null,"_trp_automatically_translated_slug_zh_cn":null,"_trp_automatically_translated_slug_nl_nl":null,"_trp_automatically_translated_slug_pt_br":null,"_trp_automatically_translated_slug_sv_se":null,"rank_math_analytic_object_id":"944","rank_math_internal_links_processed":null,"_trp_automatically_translated_slug_ro_ro":null,"_trp_automatically_translated_slug_sk_sk":null,"_trp_automatically_translated_slug_bg_bg":null,"_trp_automatically_translated_slug_sl_si":null,"litespeed_vpi_list":["webhostinglogo.png"],"litespeed_vpi_list_mobile":["webhostinglogo.png"],"rank_math_seo_score":null,"rank_math_contentai_score":null,"ilj_limitincominglinks":null,"ilj_maxincominglinks":null,"ilj_limitoutgoinglinks":null,"ilj_maxoutgoinglinks":null,"ilj_limitlinksperparagraph":null,"ilj_linksperparagraph":null,"ilj_blacklistdefinition":null,"ilj_linkdefinition":["online-skimming: 1.000 deutsche online-shops betroffen","skimming","online shop","shop"],"_eb_reusable_block_ids":[],"rank_math_focus_keyword":null,"rank_math_og_content_image":null,"_yoast_wpseo_metadesc":"Viele deutsche Online Shops sind von Online Skimming betroffen. \u26a0\ufe0f Mit diesem kostenlosen Tool kannst du deinen Shop pr\u00fcfen. \u2705","_yoast_wpseo_content_score":"60","_yoast_wpseo_focuskeywords":"[]","_yoast_wpseo_keywordsynonyms":"[\"\"]","_yoast_wpseo_estimated-reading-time-minutes":null,"rank_math_description":"Viele deutsche Online Shops sind von Online Skimming betroffen. \u26a0\ufe0f Mit diesem kostenlosen Tool kannst du deinen Shop pr\u00fcfen. \u2705","surfer_last_post_update":null,"surfer_last_post_update_direction":null,"surfer_keywords":null,"surfer_location":null,"surfer_draft_id":null,"surfer_permalink_hash":null,"surfer_scrape_ready":null,"_thumbnail_id":"1084","footnotes":null,"_links":{"self":[{"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/posts\/4272","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/comments?post=4272"}],"version-history":[{"count":1,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/posts\/4272\/revisions"}],"predecessor-version":[{"id":8451,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/posts\/4272\/revisions\/8451"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/media\/1084"}],"wp:attachment":[{"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/media?parent=4272"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/categories?post=4272"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webhosting.de\/en\/wp-json\/wp\/v2\/tags?post=4272"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}