Ransomware hits e-commerce platform X-Cart


Level 68
Content Creator
Malware Hunter
Aug 17, 2014
E-commerce software vendor X-Cart suffered a ransomware attack at the end of October that brought down customer stores hosted on the company's hosting platform.

The incident is believed to have taken place after attackers exploited a vulnerability in a third-party software to gain access to X-Cart's store hosting systems.

"We have identified what we believed to have been the vulnerability but do not wish to disclose the name until its confirmed by our security firm," Jeff Cohen, VP of Marketing for Seller Labs, the company behind X-Cart, told ZDNet in an email.

Cohen said the attackers gained access to a small number of servers, which they encrypted, effectively bringing down X-Cart stores running on top of the impacted systems. Some stores went down completely, while others reported issues with sending email alerts.

"The outage impacted a small percentage of our infrastructure, mainly those on our shared hosting servers. "Our core systems were not impacted," Cohen said.
In the meantime, Cohen said that "all customer websites have since been restored."