Site after site is being hacked every second that we spent on the internet. Many of these are commercial sites that involve money or sensitive information crucial to the website owner. How are these sites being hacked anyway?
First and essential step in the cyber attack planning, that we already stressed in previous posts, is
the security information gathering on potential victim websites. Since the majority of the commercial sites are created using CMS (Content Management System), the information on the underlying code is publicly available. Well-known CMSs are WordPress, Joomla, Magento, etc. These are continuously studied by hackers to find new security loopholes.