Magecart attackers compromised at least 374 e-commerce sites running end-of-life Magento in a day, including planting 19 backdoors on a single website through SQL injection on a vulnerable plugin.
Researchers recorded the largest Magecart attack that compromised over 2,000 Magento stores and exposed the private and financial details of over 10,000 customers.