We upgraded our anti-virus/anti-malware system at the beginning of May and they found one malware called pr.phpWe received notification from Visa of a potential data compromise event at FL REAL ESTATE SCHOOL, MID 496407439884. Specifically, Visa has identified 45 cards used legitimately at this location between 2/14/24 and 5/14/24 that later experienced fraud.
Please immediately investigate your network and systems for any signs of malware of underlying vulnerabilities. Visa recommends the following containment and remediation actions:
• Run anti-virus/anti-malware scans on web servers
• Remove malicious code
• Change administrative passwords
• Ensure shopping cart is upgraded or patched to latest version
• Removing any software packages no longer needed or patch plug-in applications
• Review source code and databases for malware
The server security people deleted it, but now we are being asked specifically what information was exposed. Does anyone know of this particular malware?
Other than the obvious things like changing users/passwords and updating the site as reported here is ther anything else I should be doing?
1. Your Exact OpenCart Version Version 3.0.3.8
2. Used Template/Theme: CodingBrains created a custom theme based on default and an older custom theme (created specifically for the site)
3. (Additional) Installed Extension(s)
Knowband Blocker Knowband 1.4 07/04/2024 02:46 PM
KLAVIYO Integration [3xxx] HuntBee OpenCart Services 2.4.0 05/22/2024 12:27 PM
Redirect Manager Clear Thinking, LLC v2023-5-11 05/01/2024 05:33 PM
Modification Manager Opencart-templates 3.0.0.12 01/16/2024 08:01 AM
d_opencart_patch Dreamvention 3.1.10 01/16/2024 07:45 AM
d_twig_manager Dreamvention 2.1.2 01/16/2024 07:44 AM
KLAVIYO Integration [mpcheckout] HuntBee OpenCart Services 2.3.4 01/05/2024 03:45 AM
Base Plugin from HuntBee [3xxx] HuntBee OpenCart Services 3.0.0 12/07/2023 11:05 PM
SEO - Canonical (Installation Pending) HuntBee OpenCart Services 4 12/05/2023 10:46 AM
Enable Installer to access anywhere in admin, catalog, system fo HuntBee OpenCart Services 1.0.1 10/31/2023 04:43 PM
New Returns E-mail Clear Thinking, LLC v2023-5-05 10/13/2023 01:44 PM
Event Manager Codinginspect 1.0 10/13/2023 03:47 AM
ADV Sales Report ADV Reports and Statistics 4.5 10/10/2023 05:41 PM
Quick Checkout By ModulePoints ModulePoints 3x 10/04/2023 01:23 PM
d_seo_module Dreamvention 3.0.0 10/03/2023 04:30 PM
d_seo_module_blog Dreamvention 3.0.0 10/03/2023 04:30 PM
Menu Editor gun88 + SergeTkach fix for OC 3 1.2 08/03/2023 01:57 PM
Show Modules J P Senthil Kumar 1.0 07/25/2023 05:08 PM
4. (Additional) Installed Translation(s) none
5. Used php Version PHP 7.3 (ea-php73)