Connect with us


Ransomware hits e-commerce platform X-Cart

Company says it has now recovered from the attack and all customer sites are now back up….



E-commerce software vendor X-Cart suffered a ransomware attack at the end of October that brought down customer stores hosted on the company’s hosting platform.

The incident is believed to have taken place after attackers exploited a vulnerability in a third-party software to gain access to X-Cart’s store hosting systems.

“We have identified what we believed to have been the vulnerability but do not wish to disclose the name until its confirmed by our security firm,” Jeff Cohen, VP of Marketing for Seller Labs, the company behind X-Cart, told ZDNet in an email.

Cohen said the attackers gained access to a small number of servers, which they encrypted, effectively bringing down X-Cart stores running on top of the impacted systems. Some stores went down completely, while others reported issues with sending email alerts.

“The outage impacted a small percentage of our infrastructure, mainly those on our shared hosting servers.

“Our core systems were not impacted,” Cohen said.

In the meantime, Cohen said that “all customer websites have since been restored.”

Nevertheless, the outage, which lasted for a few days, rubbed some store owners the wrong way, with a few trying to organize a class-action lawsuit against the store hoster.

In response to this initiative, Cohen said the company’s “first priority” during the ransomware attack “has been to get every customer back online and ensure we have a stable and secure system.”

The Seller Labs exec said they are keeping communication channels open with any customer affected by the recent ransomware attack and encouraged them to reach out for help or discussions.

Asked if Seller Labs paid the ransomware gang to recover its files, Cohen said they chose to restore from backups, and that payment couldn’t be made either way because “the hackers didn’t provide any way to communicate.”

X-Cart’s free/downloadable e-commerce CMS isn’t believed to have been impacted or tainted following the X-Cart ransomware incident.

X-Cart joins a long list of ransomware incidents that have impacted web hosting and data center providers. The list also includes Equinix, CyrusOne, Cognizant, A2 Hosting, SmarterASP.NET,, and Internet Nayana.

PortSwigger’s The Daily Swig first reported on the X-Cart ransomware incident. ZDNet reported independently from a different source.



0 Users (0 votes)
Criterion 1
What people say... Leave your rating
Sort by:

Be the first to leave a review.

User Avatar
{{{ review.rating_title }}}
{{{review.rating_comment | nl2br}}}

Show more
{{ pageNumber+1 }}
Leave your rating

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *


Publications33 mins ago

Revain REV

Coinpedia3 hours ago

Top 3 Reasons, Why XRP Price is Pumping very hard

XRP price has become the talk of the town in recent days with remarkable gains within a short stipulated time....

Coinpedia11 hours ago

Ethereum Price Analysis, ETH Price May Break Above $1K by Dec 2020?

As the ETH price surged, a huge mass of crypto enthusiasts shifted their focus from the other cryptos to Ethereum....

Bioengineer13 hours ago

Успешный краш-тест соответствует важной вехе в программе ядерного сдерживания

Команда Sandia работала над решением проблем COVID-19 и своевременно добилась результатов Фото: Фото Брета Латтера, Sandia National Laboratories, Альбукерке, Нью-Мексико…

Coinpedia14 hours ago

DOT to Outperform ETH Capturing its Big Portion of Market Capitalization

One of the popular crypto analyst has predicted the DOT ecosystem will outperform the ETH platform in the coming days....

Business insider15 hours ago

Clean Power Capital Announces Appointment of Leading Clean Energy Entrepreneur Greg Nuttall to the PowerTap Advisory Board | Markets Insider

VANCOUVER, British Columbia, Nov. 23, 2020 (GLOBE NEWSWIRE) -- Clean Power Capital Corp. (CSE: MOVE)(FWB: 2K6)(OTC: MOTNF) (“Clean Power” or...

Bioengineer1 day ago

Successful crash test meets major milestone for nuclear deterrence program

Sandia team worked through COVID-19 challenges, delivered results on timeCredit: Photo by Bret Latter, Sandia National Laboratories ALBUQUERQUE, N.M. --...

Blockchain news1 day ago

ETH, XRP, BCH See Bullish Gains, But Still a Far Cry from All-Time Highs

Bitcoin and the top altcoins ETH, XRP, and BCH has seen impressive surges in recent times but the latter three...

Entrepreneur1 day ago

3 Ways You Can Level the Playing Field Against Big Business

To gain ground against well-established rivals, focus on the three Cs: Competition, credit and connections....

Techcrunch1 day ago

A bug meant Twitter Fleets could still be seen after they disappeared – TechCrunch

Fleets live on Twitter's servers for up to 30 days....


    Select language