Between 200,000 and 240,000 e-commerce websites are still running Magento 1.x, an older version of the popular content management system (CMS) that will reach End-of-Life (EOL) in June of next year. Researchers with Sucuri warn that if these websites do not switch to Magento 2.x by then, they will inevitably become easy targets for Magecart actors and other threat actors. Magecart is an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the payment card information of visitors.
The problem with using EOL software is that it is bound to develop vulnerabilities, Art Martori of Sucuri explains. “Eventually, these [vulnerabilites] lead to a compromised website – which cripples any ecommerce business,” he added.
Read more: Between 200,000 and 240,000 Magento online stores will reach EOL next year