Over 200 Magento Stores Compromised In Rootkit Rampage via Zero-Day Exploit

A dangerous wave of attacks exploiting CVE-2025-54236, dubbed “SessionReaper,” in Magento e-commerce platforms.

This vulnerability lets attackers bypass authentication by reusing invalid session tokens, paving…