{"id":4272,"date":"2020-10-30T21:03:52","date_gmt":"2020-10-30T20:03:52","guid":{"rendered":"https:\/\/webhosting.de\/?p=4272"},"modified":"2025-02-19T18:56:21","modified_gmt":"2025-02-19T17:56:21","slug":"online-skimming-1-000-aleman-tiendas-on-line-afectadas","status":"publish","type":"post","link":"https:\/\/webhosting.de\/es\/online-skimming-1-000-deutsche-online-shops-betroffen\/","title":{"rendered":"Desnaturalizaci\u00f3n en l\u00ednea: 1.000 tiendas online alemanas afectadas"},"content":{"rendered":"<p>La Oficina Federal Alemana de Seguridad de la Informaci\u00f3n (BSI) tiene informaci\u00f3n de que al menos 1.000 alemanes&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>&nbsp;de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Desnaturalizaci\u00f3n en l\u00ednea<\/span>&nbsp;se ven afectados. Aprovechen esto...&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Cyber<\/span>-vulnerabilidad de la seguridad penal en versiones obsoletas de la&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Software de la tienda...<\/span>para introducir c\u00f3digo malicioso. Este c\u00f3digo luego esp\u00eda la informaci\u00f3n de pago de los clientes durante el proceso de pedido y la transmite a los perpetradores. Los afectados son&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>que se basan en el ampliamente utilizado&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Software<\/span>&nbsp;Con base en Magento.<\/p>\n<p>El c\u00f3digo infiltrado y el flujo de salida de datos asociado no suele ser visible para los usuarios. La BSI no dispone actualmente de informaci\u00f3n sobre el alcance de los datos de pago ya liberados por estos ataques.<\/p>\n<p>Seg\u00fan un an\u00e1lisis realizado por un desarrollador de herramientas de seguridad para Magento, en septiembre de 2016 casi 6.000 de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Desnaturalizaci\u00f3n en l\u00ednea<\/span>&nbsp;preocupados&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>&nbsp;identificadas, incluyendo varios cientos de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Tiendas<\/span>&nbsp;Operador alem\u00e1n.&nbsp;<abbr lang=\"en-GB\" title=\"Equipo de Respuesta a Emergencias Inform\u00e1ticas\" xml_lang=\"en-GB\">CERT<\/abbr>-El Gobierno Federal inform\u00f3 a los respectivos operadores de red responsables en Alemania de los&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span>-Tiendas. Seg\u00fan los resultados actuales, esta infecci\u00f3n a\u00fan no ha sido eliminada por muchos operadores o el&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\"><a href=\"https:\/\/webhosting.de\/es\/switch-rechenzentren-zahlen-geld-fuer-server-abwaerme\/\">Servidor<\/a><\/span>&nbsp;se han visto comprometidos una vez m\u00e1s. Las vulnerabilidades de Magento explotadas por los atacantes fueron explotadas por los operadores de la tienda a pesar de existir&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Actualizaciones de software<\/span>aparentemente no est\u00e1 cerrado. Esto permite&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Cyber<\/span>-los delincuentes sigan utilizando los datos de pago y otros datos personales introducidos al realizar pedidos. <a href=\"https:\/\/webhosting.de\/es\/personenbezogene-daten-sozialen-netzwerken\/\">Datos<\/a> de clientes. El n\u00famero de afectados conocidos actualmente&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres&nbsp;<\/span>en Alemania ha aumentado a por lo menos 1.000 como resultado.<\/p>\n<p>El&nbsp;<abbr lang=\"en-GB\" title=\"Equipo de Respuesta a Emergencias Inform\u00e1ticas\" xml_lang=\"en-GB\">CERT<\/abbr>-Hoy, la Oficina Federal Alemana para la Seguridad de la Informaci\u00f3n (BSI) ha vuelto a notificar a los operadores de red responsables en Alemania de los&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>&nbsp;en sus redes y pide&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Proveedor<\/span>para transmitir la informaci\u00f3n a sus clientes (operadores de tiendas).<\/p>\n<p><q>\"Desgraciadamente, sigue ocurriendo que muchos operadores no aseguran sus <a href=\"https:\/\/webhosting.de\/es\/webhoster-und-performance-bei-online-shops\/\">tiendas en l\u00ednea<\/a> act\u00faan de forma muy descuidada. Un gran n\u00famero de tiendas est\u00e1n ejecutando versiones de software obsoletas que contienen varias vulnerabilidades de seguridad conocidas\"<\/q>explica el presidente de la BSI, Arne Sch\u00f6nbohm.&nbsp;<q>\"Los operadores deben estar a la altura de su responsabilidad para con sus clientes y asegurar sus servicios de manera r\u00e1pida y consistente\".<\/q><\/p>\n<h3>La responsabilidad del operador de la tienda<\/h3>\n<p>En virtud del art\u00edculo 13.7&nbsp;<abbr title=\"Ley de Telemedia\">TMG<\/abbr>&nbsp;son operadores de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>&nbsp;est\u00e1 obligado a mantener sus sistemas de acuerdo con la&nbsp;<a class=\"RichTextIntLink Publication FTpdf\" title=\"Protecci\u00f3n de vanguardia de los servicios de telemedios (Abre nueva ventana)\" href=\"https:\/\/www.bsi.bund.de\/DE\/Presse\/Pressemitteilungen\/Presse2017\/ACS\/DE\/_\/downloads\/BSI-CS_125.html\" target=\"_blank\" rel=\"noopener noreferrer\">estado de la t\u00e9cnica<\/a>&nbsp;para protegerse de los ataques. Una medida b\u00e1sica y efectiva para ello es la instalaci\u00f3n regular y r\u00e1pida de las actualizaciones de seguridad disponibles.<\/p>\n<p>La BSI se\u00f1ala en este punto que la obligaci\u00f3n de asegurar los sistemas no es s\u00f3lo para las empresas, sino tambi\u00e9n para todos los dem\u00e1s operadores comerciales de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">Sitios web<\/span>&nbsp;se aplica. Esto incluye tambi\u00e9n, por ejemplo, los sitios web de particulares o asociaciones si su funcionamiento tiene por objeto generar ingresos de manera permanente. Esto ya se supone si se coloca publicidad pagada en forma de banners en los sitios web.<\/p>\n<p>Operador de&nbsp;<span lang=\"en-GB\" xml_lang=\"en-GB\">En l\u00ednea<\/span><span lang=\"en-GB\" xml_lang=\"en-GB\">-Talleres<\/span>&nbsp;basado en Magento puede ser usado con el servicio gratuito&nbsp;<a class=\"RichTextExtLink ExternalLink\" title=\"Informe de MageReport de enlace externo\" href=\"https:\/\/www.magereport.com\/\" target=\"_blank\" rel=\"noopener\">MageReport<\/a>&nbsp;comprueba si el sistema de tu tienda tiene agujeros de seguridad conocidos y est\u00e1 afectado por los ataques actuales. Se proporciona informaci\u00f3n detallada sobre c\u00f3mo solucionar cada problema detectado.<\/p>","protected":false},"excerpt":{"rendered":"<p>Dem Bundesamt f\u00fcr Sicherheit in der Informationstechnik (BSI) liegen Informationen vor, nach denen aktuell mindestens 1.000 deutsche&nbsp;Online-Shops&nbsp;von&nbsp;Online-Skimming&nbsp;betroffen sind. Dabei nutzen&nbsp;Cyber-Kriminelle Sicherheitsl\u00fccken in veralteten Versionen der&nbsp;Shopsoftware, um sch\u00e4dlichen Programmcode einzuschleusen. Dieser sp\u00e4ht dann beim Bestellvorgang die Zahlungsinformationen der Kunden aus und \u00fcbermittelt sie an die T\u00e4ter. Betroffen sind&nbsp;Online-Shops, die auf der weit verbreiteten&nbsp;Software&nbsp;Magento basieren. Der eingeschleuste [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1084,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[685,678],"tags":[301,302,303,304],"class_list":["post-4272","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein","category-ecommerce","tag-bsi","tag-hack","tag-magento","tag-skimming"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":"685","rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":"678","rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":null,"_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":"1","_edit_lock":"1604486480:1","_oembed_e7b913c6c84084ed9702cb4feb012ddd":null,"_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":null,"_oembed_time_03514b67990db061d7c4672de26dc514":null,"rank_math_news_sitemap_robots":"index","rank_math_robots":["index"],"_eael_post_view_count":"4685","_trp_automatically_translated_slug_ru_ru":null,"_trp_automatically_translated_slug_et":"online-skimming-1-000-saksa-online-kauplused-saadavaks","_trp_automatically_translated_slug_lv":"online-skimming-1-000-german-online-shops-affected","_trp_automatically_translated_slug_fr_fr":null,"_trp_automatically_translated_slug_en_us":null,"_wp_old_slug":null,"_trp_automatically_translated_slug_da_dk":null,"_trp_automatically_translated_slug_pl_pl":null,"_trp_automatically_translated_slug_es_es":null,"_trp_automatically_translated_slug_hu_hu":null,"_trp_automatically_translated_slug_fi":"online-skimming-1-000-saksalaiset-online-kaupat-vaikuttavat","_trp_automatically_translated_slug_ja":"%e3%82%aa%e3%83%b3%e3%83%a9%e3%82%a4%e3%83%b3%e3%82%b9%e3%82%ad%e3%83%9f%e3%83%b3%e3%82%b0%e3%81%ae%e5%bd%b1%e9%9f%bf%e3%82%92%e5%8f%97%e3%81%91%e3%81%9f%e3%83%89%e3%82%a4%e3%83%84%e3%81%ae%e3%82%aa","_trp_automatically_translated_slug_lt_lt":null,"_elementor_edit_mode":null,"_elementor_template_type":null,"_elementor_version":null,"_elementor_pro_version":null,"_wp_page_template":"default","_elementor_page_settings":null,"_elementor_data":null,"_elementor_css":null,"_elementor_conditions":null,"_happyaddons_elements_cache":null,"_oembed_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_time_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_time_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_59808117857ddf57e478a31d79f76e4d":null,"_oembed_time_59808117857ddf57e478a31d79f76e4d":null,"_oembed_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_time_965c5b49aa8d22ce37dfb3bde0268600":null,"_oembed_81002f7ee3604f645db4ebcfd1912acf":null,"_oembed_time_81002f7ee3604f645db4ebcfd1912acf":null,"_elementor_screenshot":null,"_oembed_7ea3429961cf98fa85da9747683af827":null,"_oembed_time_7ea3429961cf98fa85da9747683af827":null,"_elementor_controls_usage":null,"_elementor_page_assets":[],"_elementor_screenshot_failed":null,"theplus_transient_widgets":["tp-video-player"],"_eael_custom_js":null,"_wp_old_date":null,"_trp_automatically_translated_slug_it_it":null,"_trp_automatically_translated_slug_pt_pt":null,"_trp_automatically_translated_slug_zh_cn":null,"_trp_automatically_translated_slug_nl_nl":null,"_trp_automatically_translated_slug_pt_br":null,"_trp_automatically_translated_slug_sv_se":null,"rank_math_analytic_object_id":"944","rank_math_internal_links_processed":null,"_trp_automatically_translated_slug_ro_ro":null,"_trp_automatically_translated_slug_sk_sk":null,"_trp_automatically_translated_slug_bg_bg":null,"_trp_automatically_translated_slug_sl_si":null,"litespeed_vpi_list":["webhostinglogo.png"],"litespeed_vpi_list_mobile":["webhostinglogo.png"],"rank_math_seo_score":null,"rank_math_contentai_score":null,"ilj_limitincominglinks":null,"ilj_maxincominglinks":null,"ilj_limitoutgoinglinks":null,"ilj_maxoutgoinglinks":null,"ilj_limitlinksperparagraph":null,"ilj_linksperparagraph":null,"ilj_blacklistdefinition":null,"ilj_linkdefinition":["online-skimming: 1.000 deutsche online-shops betroffen","skimming","online shop","shop"],"_eb_reusable_block_ids":[],"rank_math_focus_keyword":null,"rank_math_og_content_image":null,"_yoast_wpseo_metadesc":"Viele deutsche Online Shops sind von Online Skimming betroffen. \u26a0\ufe0f Mit diesem kostenlosen Tool kannst du deinen Shop pr\u00fcfen. \u2705","_yoast_wpseo_content_score":"60","_yoast_wpseo_focuskeywords":"[]","_yoast_wpseo_keywordsynonyms":"[\"\"]","_yoast_wpseo_estimated-reading-time-minutes":null,"rank_math_description":"Viele deutsche Online Shops sind von Online Skimming betroffen. \u26a0\ufe0f Mit diesem kostenlosen Tool kannst du deinen Shop pr\u00fcfen. \u2705","surfer_last_post_update":null,"surfer_last_post_update_direction":null,"surfer_keywords":null,"surfer_location":null,"surfer_draft_id":null,"surfer_permalink_hash":null,"surfer_scrape_ready":null,"_thumbnail_id":"1084","footnotes":null,"_links":{"self":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts\/4272","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/comments?post=4272"}],"version-history":[{"count":1,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts\/4272\/revisions"}],"predecessor-version":[{"id":8451,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/posts\/4272\/revisions\/8451"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/media\/1084"}],"wp:attachment":[{"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/media?parent=4272"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/categories?post=4272"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webhosting.de\/es\/wp-json\/wp\/v2\/tags?post=4272"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}