In the last week of March, hackers showed increased interest in online cosmetics stores. They were actively looking for vulnerabilities to carry out a successful attack and deprive businesses of profits, and citizens of gifts. This was stated by Alexey Pashkov, Head of WAF Department at Solar Group.
According to information from WAF specialists at Solar, from the first days of March 2025, attackers intensified their attempts to scan websites selling cosmetics.
Already on March 1, the number of scans per day doubled compared to the average value in February 2025, and by March 7, their number had already increased nine times compared to the same indicator. This means that hackers actively began looking for vulnerabilities in order to carry out a successful attack and deprive businesses of profits, and citizens of gifts.
Experts also drew attention to an increase in the number of attacks using SQL injections on online stores specializing in the sale of perfumes and cosmetics. This is a method that allows attackers to gain unauthorized access to company databases, including authorization information and other confidential data, and cause them damage. The increase in the number of such attacks compared to the average daily rate in February was 18 times.
Solar reported a threefold increase in the number of cyberattacks that exploit a vulnerability that occurs when opening local files on a server in code without sufficient verification or authentication. This allows hackers to gain access to local files on the web server, which may contain sensitive data, such as cryptographic keys and password databases.
Earlier it became known that hackers began to massively deceive Russian women before March 8. Scammers created fake stores where they offered gifts in exchange for installing applications. They are designed to steal personal data and even gain access to bank accounts.
Read more on the topic:
Scammers pretend to be tech support to deceive Russians
Scammers force YouTube bloggers to distribute hidden miners in Russia
The Ministry of Internal Affairs warns about the danger of the NGate trojan