X-Cart E-Commerce Platform Hit by Ransomware, Stores Brought Down

X-Cart E-Commerce Platform Hit by Ransomware, Stores Brought Down article imageX-Cart is an e-commerce solution that was acquired by Seller Labs last year. According to X-Cart’s official website, the company has more than 20 years of experience. Unfortunately, the platform suffered a ransomware attack, which took place at the end of October.

X-Cart ransomware attacks: the details

The incident affected a small percentage of the company’s infrastructure running on their shared hosting servers, while the core systems remained safe.

As a result of it, customer stores hosted on X-Cart’s hosting platform were brought down. The attack was possible due to a vulnerability in a third-party application that let attackers gain access to the company’s hosting systems.

Vulnerabilities often become gateways to various cyberattacks, as evident by the many cases HowToHosting.guide has covered. An example of an incident that took place thanks to a vulnerability is the File Manager plugin bug which endangered more than 700,000 WordPress sites.

Not much is known about the vulnerability, which enabled the ransomware attack, as the company doesn’t wish to disclose anything before reaching a final conclusion.

It appears that the threat actors obtained access to a few servers which were encrypted. The encryption knocked down X-Cart customer stores, some of which went down completely, whereas others couldn’t send email alerts. Fortunately, all affected websites have been restored.

How did X-Cart’s customers react to the ransomware attack?

Not surprisingly, those who were seriously impacted by the cyber incident were rather unhappy, as some of them tried to put together a class-action lawsuit against the service provider, ZDNet reported.

Did the provider pay ransomware criminals? Instead of paying any ransom money, the company restored the data via backups. In fact, it is noteworthy that the cybercriminals didn’t provide any way to communicate with them.

This is not the first case of ransomware criminals attacking web hosting platforms. Such attacks were registered against companies such as Equinix, A2 Hosting, CyrusOne, and Cognizant.

Researched and created by:
Krum Popov
Passionate web entrepreneur, has been crafting web projects since 2007. In 2020, he founded HTH.Guide — a visionary platform dedicated to streamlining the search for the perfect web hosting solution. Read more...
Technically reviewed by:
Metodi Ivanov
Seasoned web development expert with 8+ years of experience, including specialized knowledge in hosting environments. His expertise guarantees that the content meets the highest standards in accuracy and aligns seamlessly with hosting technologies. Read more...

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree
At HTH.Guide, we offer transparent web hosting reviews, ensuring independence from external influences. Our evaluations are unbiased as we apply strict and consistent standards to all reviews.
While we may earn affiliate commissions from some of the companies featured, these commissions do not compromise the integrity of our reviews or influence our rankings.
The affiliate earnings contribute to covering account acquisition, testing expenses, maintenance, and development of our website and internal systems.
Trust HTH.Guide for reliable hosting insights and sincerity.