Magento Forums
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Be on the lookout for a FAKE security patch email

SOLVED
Go to solution
‎06-07-2017 04:55 PM
‎06-07-2017 04:55 PM

Be on the lookout for a FAKE security patch email

I just got this email:

 

New dangerous magento XSS vulnerability
Wed 6/7/2017 12:16 PM
From: marc@securi.ltd
 
During our regular research audits for our Cloud-based WAF, we discovered a Stored XSS vulnerability affecting the Magento platform that can be easily exploited remotely. We notified the Magento team and worked with them to get it fixed. We create Magento security patches.

Information about XSS vulnerability and instructions for fix in our site: https://securi.ltd/security-advisory-stored-xss-in-magento.html.
 
FAKE site: https://securi.ltd/security-advisory-stored-xss-in-magento.html
 
http://whois.domaintools.com/securi.ltd - site just went live yesterday
 
 
 
0 Kudos
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
‎08-23-2017 05:57 AM
‎08-23-2017 05:57 AM

Re: Be on the lookout for a FAKE security patch email

Thanks for letting us know. It looks like this site has been removed since this was posted. 

----
If you've found one of my answers useful, please give "Kudos" or "Accept as Solution" as appropriate. Thanks!

View solution in original post

0 Kudos
Reply
1 REPLY 1
‎08-23-2017 05:57 AM
‎08-23-2017 05:57 AM

Re: Be on the lookout for a FAKE security patch email

Thanks for letting us know. It looks like this site has been removed since this was posted. 

----
If you've found one of my answers useful, please give "Kudos" or "Accept as Solution" as appropriate. Thanks!
0 Kudos
Reply