WooCommerce - How to identify data leakage in website.

A

abhishekkjain

Member
Oct 7, 2019
81
44
18
Hi,

I am running a woo commerce based shop and recently was reported that the new order placed at store were spammed. Interestingly I happen to use only official plugins or plugins from Babiato. I have SSH key added to my server and have some security in place within Wordpress. I am not seeing any suspicious admin activity. How can I investigate this? What can be done to mitigate the risk in future?

My concerns:
  1. Some details are shared with payment gateways.
  2. Shipping partner has access to read my store's data.
  3. Having so many nulled plugin makes it difficult to track. Sorry for doubting Babiato.
Please suggest how to find the point of data leakage.
 
A

abhishekkjain

Member
Oct 7, 2019
81
44
18
BTW by spammed, I meant people who placed order on my store got an email from a competitor's having same theme. They captured:
  1. Name.
  2. Email.
  3. Address.
  4. Some random order amount.
They had other details like product, cost and phone number missing. My concern is how someone got the sensitive data. I asked my friend also doing QA for site to check for spam emails and 2 of them got the same mail.
 
MrSam_1

MrSam_1

Well-known member
Administrative
Trusted Seller
Dec 1, 2018
24,098
27,355
120
It doesn't seem like an issue of using nulled plugins but more like a programming issue for one of the plugins. As long as they don't intercept the full database.
My advice is to manually check all the plugins used related to ordering/newsletter/shipping and see which data is sent/available for each. Tho I might think is the shipping plugin as it have the name/email/address combo.
 
A

abhishekkjain

Member
Oct 7, 2019
81
44
18
slvrsteele said:
What do you mean by spammed?
Click to expand...
Clients are getting fake emails for orders placed on another site that they don't recall signup up to. I did a forgot password request to that site and there was no user registered on the customer's mail id. This happened with 3 customer emails...

I am checking all the plugins one by one...
 
M

mercyyou

Active member
Jul 19, 2020
153
67
28
There's no issue with nulled plugins, as long it does not contain malicious codes. VirusTotal is pretty good at identifying this.

I heavily recommend Wordfence "Live Traffic" feature for log capture, it the best application firewall I've seen, for this. Now, you would have to manually block bad IPs traffic in "Live Traffic" and again permanently under it "Blocking" menu. Use abuseipdb.com for reviewing IP reputations. Cloudflare offers $20 month WAF (web application firewall), which I would recommend as a second layer. If you have the means, you can forgo the application firewall (if it not required for compliance in the industry you serve (such as PCI) for a firewall in front of the server that host your wordpress. Some enterprise hosting and cloud platform providers (AWS/GCP/Azure) offer them.

Feel free to ask any questions.
 
frizzel

frizzel

Well-known member
Trusted Uploader
Jun 13, 2019
485
253
63
Wherever my imagination takes me
K

KoolPal

Member
Apr 15, 2019
82
37
18
I saw this randomly too and I suspect shipping data is getting leaked by vendors. Do continue to investigate though.
 
You must log in or register to reply here.

Similar threads

kikirikimiki
Woocommerce - how to hide price for certain products / category of products ?
Replies
11
Views
544
General Tech Discussion
guguk
guguk
Toje
WooCommerce Category on Click (example)
Replies
3
Views
312
General Tech Discussion
guguk
guguk
Truth Serum
React Native mobile app developer familiar with woocommerce
Replies
3
Views
390
General Tech Discussion
piincher
piincher
E
Tutor LMS and YITH WooCommerce Affiliates
Replies
0
Views
284
General Tech Discussion
eformateur
E
Bilaljo999
How to convert woocommerce product data type bulk
Replies
5
Views
1K
General Tech Discussion
Bilaljo999
Bilaljo999

Latest posts

Forum statistics

Threads
69,483
Messages
909,940
Members
239,754
Latest member
pjofficebox

Share this page

Share this page

About us

  • Our community has been around for many years and pride ourselves on offering unbiased, critical discussion among people of all different backgrounds. We are working every day to make sure our community is one of the best.

Quick Navigation

Forums Contact us

User Menu

Login
Community platform by XenForo © 2010-2022 XenForo Ltd.
Top Bottom