eCommerce Sites Warn Sellers About the Heartbleed Bug

Heart Warning photo
What's Next In Payments®
3:00 AM EDT April 11th, 2014

This week the Heartbleed bug was made public and many sites like eBay; Etsy and PayPal are giving advice to merchants who are worried.

“Merchants need to own and solve the issue themselves,” Z-Firm’s Rafael Zimberoff said. He also gives advice for sellers who operate their own eCommerce website and it’s spelled out in a blog post on the Z-Firm website.

A bug in a system was suppose to encrypt data such as passwords and credit card numbers, but that has been vulnerable on many sites for the past two years.

Zimberoff is also the Product Manager for ShipRush and did a testing for 10 random ZenCart and Magneto stores to check their vulnerability.

“Of the 10, three were found to have the vulnerability,” he said. “Most vulnerable are PHP-based systems that tend to run on Apache and related web servers. If you use any PHP app (ZenCart, Magento, OpenCart, PrestaShop, WooCommerce, etc etc), even if part of a hosted solution, but especially if you are responsible for the server, then you MUST pay attention.”

 

“What’s Hot” is aggregated content. PYMNTS.com claims no responsibility for the accuracy of the content published by the original source.

Comments
Also by This Author
What's Hot
Mobile
You Never Know What You’ll Find On The Internet (Hint Stolen Target Card Data)
Loyalty & Rewards
Starbuck Mobile Ordering Hits Portland, U.S. Launch 2015
News
Why Feds Want EMV For Govt. Debit Cards
Mobile
Alipay Wallet’s Remarkable Volume
View All Articles ››
You May Also Like
B2B Payments
U.K Small Business Loans Fall Down ~$650 million
B2B Payments
Health Sunshine Act Didn’t Reveal All It Was Supposed To
B2B Payments
Mobile Payments To Benefit From Tech Investments
Controversial
What Only The “Almost Famous” Know About Payments
View All Articles ››