DuckDuckGo Ups Ante: Gives $300K to 'Raise the Standard of Trust'
For the seventh year in a row, the search engine that promises not to stalk your online moves puts its money where its mouth is, this year by donating $300,000 to organizations that
System76 Saying Goodbye to Bland Design
Considering that System76 chose to unveil its new design plans to The Linux Gamer -- no invite went to FOSS Force, BTW -- we can't help but wonder if a System76 Steam Machine isn't in the works.

The Screening
The Great Debian Iceweasel/Icedove Saga Comes to an End
Now that Thunderbird is back in the Debian repositories, the decade long dispute that led to all Mozilla products in Debian being rebranded has ended.



The hatchet is finally completely
Back Yard Linux
It's not as lonely being a Linux user as it once was. These days you're liable to find people throughout your neighborhood using Linux.



My how times have changed.

It wasn't long ago that Linux
No, Evil Hackers Aren't After You
Humankind has outgrown the need to have monsters hiding under our beds. Now we let them hide in our phones, computers and microwave ovens.

Roblimo's Hideaway



OMG! I think I see a giant camera lens on
Should the U.S. Army Have Its Own Open Source License?
Should the U.S. armed forces begin releasing software under an OSI approved open source license rather than as public domain?

Roblimo's Hideaway



This question has generated many pixels'
GitHub CEO Chris Wanstrath on Open Source
Did you know that the software Stephen Hawking uses to speak is open source and that it's available on GitHub? Neither did we.

The Screening Room




At the Computer History museum, GitHub CEO Chris
August 1st, 2011

osCommerce Under Attack – So Far 3.79 Million Pages Affected

The popular osCommerce ecommerce application has been under attack at least since last week, according to web application security firm Amorize. At last count the attack has affected more than three million pages. The attack, in the form of an iFrame injection, utilizes several vulnerabilities in older versions of osCommerce. The latest version doesn’t seem to be affected. Any business using an older version of osCommerce is advised to upgrade immediately.

The Zen Cart ecommerce application, which was initially a value added fork of osCommerce, doesn’t seem to be affected. Kim Elliott, one of the founding members of Zen Cart, told me, “As far as I know there hasn’t been a problem. As long as you have our latest version and file permissions set correctly you shouldn’t have any issues.”


Help Net Security reports that a hacked osCommerce site will redirect that site’s visitors to various “drive-by” sites:

“The injected iFrames point to the willysy.com and exero.eu domains and through a series of redirections and JavaScript loadings of additional iFrames takes the user to a page on the arhyv.ru domain where a number of exploits try to take advantage of a handful of vulnerabilities in the user’s browser.”

Unfortunately, the attack is difficult to detect using most AV solutions and will require web site admins to do a little digging. Again according to Help Net Security:

“In order to check if their website(s) have been affected by the attack, Armorize advises owners/administrators to check their logs for access from the following IPs: 178.217.163.33, 178.217.165.111, 178.217.165.71, 178.217.163.214 (located in Ukraine), and to check the web pages’ source code for the offending iFrames.

“If the result of this search is positive, they should install an AV solution on the computer through which they manage the website(s), remove all the injected backdoors/iFrames/JavaScript, upgrade the osCommerce installation and, in the end, change their website hosting and osCommerce admin passwords.”

Of course, keeping your installation patched and up-to-date is crucial for web site security, as the black hats are always searching for new exploits. As Kim Elliot with Zen Cart (again, not affected by this exploit) told me, “Security is a very movable feast. As soon as you lock one door, they’ll find another.”

The following two tabs change content below.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

3 comments to osCommerce Under Attack – So Far 3.79 Million Pages Affected