New Malware “NginRAT” Is Targeting eCommerce Servers

Share post:

Sansec researchers have discovered another malware that targets e-commerce servers and carries out server-side attacks to steal payment card data from online shops.

The malware, called NgrinRAT, is a combination of the application it targets and the remote access capabilities it offers, bypassing detection by hiding on Nginx servers. According to researchers, traces of infected servers have been discovered in the United States, Germany, and France.

They also pointed out that while the malware is found on servers infected with CronRAT, a remote access trojan that hides payloads in tasks to be executed on an invalid day in the calendar, they are working towards the same goal.

This goal involves providing remote access to the compromised system. They explained that the attackers behind the malware use it to modify server-side codes that allow them to monitor and record data submitted by users. While the malware may be available on the server or be detected, administrators are still advised to check the cron tasks, as the malware could also embed itself there without being detected.

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

DOGE’s Teen Hacker Stirs Concern Over Musk Team’s Access to Federal Databases

A 19-year-old named Edward “Big Balls” Coristine has raised red flags after Wired revealed he holds a key...

Deep Seek and Open Source AI – Without the Hype: Discussion with Robert Falzon, Head of Engineering, Check Point

DeepSeek AI is shaking up the cybersecurity world—are we prepared for the risks? Join host Jim Love and...

Researchers Jailbreak DeepSeek AI, Expose System Prompt and Raise Security Concerns

Security researchers at Wallarm have successfully jailbroken DeepSeek, a recently released open-source AI model from China. The jailbreak...

New SMS Phishing Scam Targets U.S. Toll Road Users with Fake Payment Alerts

Brian Krebs of the Krebs on Security blog did a big piece leading with how residents across the...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways