I am noticing that when an order is placed. A log entry with level of "Debug" is entered. Short name is "Processing.." and the full message looks to have CC info in plain text. What should I do?
I am noticing that when an order is placed. A log entry with level of "Debug" is entered. Short name is "Processing.." and the full message looks to have CC info in plain text. What should I do?
Are you certain the log message contains literal card numbers or could it be payment tokens?
Which payment processor are you using? Try placing a test order using a different payment processor to see if that's where it's logging from.
In the case that your system is compromised you should notify all potentially impacted users as well as your hosting provider and contact a web development firm to do an analysis on your code-base.