Jump to content

Edit History

AGuyTryingToCode

AGuyTryingToCode

so I have been looking online to see if I can see anything mentioned elsewhere and I stumbled onto this reddit post:

https://www.reddit.com/r/bapccanada/comments/1r2t93k/prestashop_alert_after_canada_computers_credit/

and

https://old.reddit.com/r/bapccanada/comments/1qk4axy/canada_computers_online_card_skimmer/

I think canadacomputers is using prestashop 1.7 or 8 (the HTML does seem to imply it e.g. the module directories / css e.g. blockreassurance, ps_emailsubscription, ps_googleanalytics, ps_searchbar, ps_shoppingcart etc). If (and I do stress IF here) they have been compromised this may explain why Prestashop are not releasing any further information at the moment as they will likely need to get more information from canadacomputers e.g. the modules they are using, theme versions etc which may be tricky (especially if canadacomputers aren't responding quickly etc due to contacting customers etc).

It would also explain why https://build.prestashop-project.org/ doesnt have anything listed yet or https://security.friendsofpresta.org/ doesnt have any new CVE's (last one I can see is 23 Oct 2025)

My gut feeling is this is likely down to an out of date module or theme but without any further information, its just guessing. 

Also, you can see more details on the French version of PS forum at 

Hopefully someone with more knowledge than me on cyber security / prestashop core code etc can have a look over the above and see what they think.

This may also be completely unrelated and just a coincidence. 

AGuyTryingToCode

AGuyTryingToCode

so I have been looking online to see if I can see anything mentioned elsewhere and I stumbled onto this reddit post:

https://www.reddit.com/r/bapccanada/comments/1r2t93k/prestashop_alert_after_canada_computers_credit/

and

https://old.reddit.com/r/bapccanada/comments/1qk4axy/canada_computers_online_card_skimmer/

I think canadacomputers is using prestashop 1.7 or 8 (the HTML does seem to imply it e.g. the module directories / css e.g. blockreassurance, ps_emailsubscription, ps_googleanalytics, ps_searchbar, ps_shoppingcart etc). If (and I do stress IF here) they have been compromised this may explain why Prestashop are not releasing any further information at the moment as they will likely need to get more information from canadacomputers e.g. the modules they are using, theme versions etc which may be tricky (especially if canadacomputers aren't responding quickly etc due to contacting customers etc).

It would also explain why https://build.prestashop-project.org/ doesnt have anything listed yet or https://security.friendsofpresta.org/ doesnt have any new CVE's (last one I can see is 23 Oct 2025)

My gut feeling is this is likely down to an out of date module or theme but without any further information, its just guessing. 

Also, you can see more details on the French version of PS forum at 

Hopefully someone with more knowledge than me on cyber security / prestashop core code etc can have a look over the above and see what they think.

AGuyTryingToCode

AGuyTryingToCode

so I have been looking online to see if I can see anything mentioned elsewhere and I stumbled onto this reddit post:

https://www.reddit.com/r/bapccanada/comments/1r2t93k/prestashop_alert_after_canada_computers_credit/

and

https://old.reddit.com/r/bapccanada/comments/1qk4axy/canada_computers_online_card_skimmer/

I think canadacomputers is using prestashop 1.7 or 8 (the HTML does seem to imply it e.g. the module directories / css etc). If (and I do stress IF here) they have been compromised this may explain why Prestashop are not releasing any further information at the moment as they will likely need to get more information from canadacomputers e.g. the modules they are using, theme versions etc which may be tricky (especially if canadacomputers aren't responding quickly etc due to contacting customers etc).

It would also explain why https://build.prestashop-project.org/ doesnt have anything listed yet or https://security.friendsofpresta.org/ doesnt have any new CVE's (last one I can see is 23 Oct 2025)

My gut feeling is this is likely down to an out of date module or theme but without any further information, its just guessing. 

Also, you can see more details on the French version of PS forum at 

Hopefully someone with more knowledge than me on cyber security / prestashop core code etc can have a look over the above and see what they think.

×
×
  • Create New...