The German website of Citroen, the French car manufacturer, has been hacked. The company has notified the authorities and the investigation about it infringement has already started. According to the newspaper The Guardian, the attackers planted a backdoor on shop.citroen.de, which allowed them to steal the data hosted on the company's server.
The automaker states that some of its customer information has been violated, but is not sure how many bills have been affected.
Hold Security's Alex Holden investigates the breach. The backdoor has been removed, but appears to have existed since August 2013. The codes access of users and administrators have changed and need to be reset, the markets have been temporarily disabled, and customers are urged to monitor their bank accounts. This probably indicates that financial data has been leaked.
The case becomes even more interesting with the answer to the question, how did cybercriminals fail to violate Citroen's website?
Hold Security's Alex Holden believes the criminals behind the attack are the same as those who hacked the website of Adobe, PR Newswire and other brokerages in 2013. In most of these attacks, hackers exploited vulnerabilities in Adobe ColdFusion to access the servers of the target company.