A Magento module containing a malicious function has been discovered by Sucuri malware analysts, as team leader Bruno Zanelato shared in a company blog post on Friday. The malicious function originates from the SF9 Realex payment module and allows hackers to scrape, or collect, personal payment data entered by customers.
SF9 Realex integrates with Magento solutions Realex RealAuth Remote and Redirect, two popular solutions. Sucuri tracked the script injection attacks on Magento sites using the payment module. They warn that attacks like these on eCommerce sites will only increase in numbers and in complexity, making security research essential for companies conducting business online.