Magento Security Scan: Malware or Critical Issue D...

nohart · ‎09-13-2020

I usually have a clean security scan. Today I received an email saying - CRITICAL issues found. So I clicked the link for a review and the scan result said -

Your site contains scripts with similar behavior to typical malware code (239).Suspected malicious code detected in these resources:
https://ssl.google-analytics.com/ga.js
Please ensure all scripts are legitimate.
If you think this is a false positive - please let us know at: securityinfo@magento.com

I am not sure what this is about. Does anyone have any insight? Thank you

Manish Mittal · ‎09-13-2020

@nohart

Are you using this script in you installed Magento? https://ssl.google-analytics.com/ga.js

Any how this is third part script or check your all the scripts included in store.

Manish Mittal
https://www.manishmittal.com/

nohart · ‎09-13-2020

Thanks for the help! I have Google Shopping and at one time I did try to install Google Analytics. But I am not sure where this script is at. But these would be official scripts from Google why are they getting flagged now? I have been using Magento since about 2009 and my scans come up clean. We haven't installed anything lately. I am running Magento ver. 1.9.4.5

nohart · ‎09-19-2020

Well today Magento did another security scan and this one came back as all the others - Clean. Must of been a one time issue with their scan because we haven't done anything to our site. It seems to have fixed itself?

Magento Security Scan: Malware or Critical Issue Detected

Magento Security Scan: Malware or Critical Issue Detected

Re: Magento Security Scan: Malware or Critical Issue Detected

Re: Magento Security Scan: Malware or Critical Issue Detected

Re: Magento Security Scan: Malware or Critical Issue Detected