The Magento Shoplift (SUPEE-5344) vulnerability details have been disclosed by the CheckPoint team. They show step by step how it can be exploited to take over a vulnerable Magento site. In less than 24 hours since the disclosure, we have started to see attacks via our WAF logs trying to exploit this vulnerability. It seems to be coming from a specific crime group, since they all look the same: 62.76.177.179 and 185.22.232.218.”]
Source: https://blog.sucuri.net/2015/04/magento-shoplift-supee-5344-exploits-in-the-wild.html