"security"

How To Prevent Flooding In Shopware 6 

- E-Commerce, Shopware

Although Shopware 6 is protected from flooding by default, you can apply different techniques to make your e-commerce website more secure. In this article, we explain what flooding is. After that, you will learn how the system is protected and find out how to save your Shopware 6 website from flooding. Other useful tips on how to work with your e-commerce website are available here: Shopware Cookbook. Continue Reading

Magento First Aid: Threat-Detection, Monitoring, Medication, Analepsy, & Immune Stimulation For E-Commerce Websites

- E-Commerce, Magento, Magento 2

Check Whether Your Magento Website Has Been Hacked & Clean It Up

In the following article, we share all the information necessary to bail up a hacked Magento website (no matter, it is Magento 1 or Magento 2) and prevent possible inbreaks. Commonly, the most significant concern is that you may not even know that your e-commerce store has been attacked. Therefore, it is necessary to check whether such an episode took place or not. If offenders got claws into your business, you have to clean up an infected Magento site and extinguish the malicious impact. Moreover, it is necessary to take care of further possible intrusions. To help you with that, we discuss how to identify, fix, and protect your Magento installation and encapsulate information about the most prevalent break-in types and ways malefactors turn e-commerce stores to their advantage. Continue Reading

PSD2 & Magento 2: Payment Services Directive & 3D Secure 2.0 Explained 

- E-Commerce, Magento 2

magento 2 PSD2 3d secure 2

The world of retail banking will never be the same. In 2018, an essential change to the EU legislation called PSD2 took effect so that banks are no longer monopolists on their customers’ account data. What is the Payment Service Directive? How will PSD2 impact e-commerce in general and Magento 2 in particular? How to prepare for the new changes? You will find answers to these and other questions below. Continue Reading

CloudBleed – Cloudy With A Rain of Data

CloudFlare CloudBleed

Last week, Tavis Ormandy from Google’s Project Zero discovered a huge problem in the security of CloudFlare‘s edge servers. He contacted the company and reported that corrupted web pages were returned by some HTTP requests run through the popular hosting provider. Below, we shed light on the problem as well as provide information on how to prevent Magento form the new bottleneck dubbed CloudBleed. Continue Reading

SUPEE-8788 – A New Magento Security Patch

- Magento tips & tricks

Extendware Review Reminder Magento Extension Review; Extendware Review Reminder Magento Module Overview

There is already a post dedicated to Magento security patches in our blog. SUPEE-6482, SUPEE-6285, SUPEE-5994, SUPEE-5344, and others are described here: Magento critical security patches. And since it includes too much information, we’ve decided to create a new one which sheds light on the latest patch – SUPEE-8788. The new security improvement is vital since it fixes lots of vulnerabilities. Although most of them haven’t been utilized in attacks, it’s not the reason to ignore SUPEE-8788. Continue Reading

Guruincsite Magento Disaster

- E-Commerce

Guruincsite malware - a new Magento Magento Disaster

A new Magento malware has been discovered and it is a malicious script by Guruincsite. Unfortunately, a new attack vector is not identified, but we already know that the disease makes Magento websites vulnerable to a code execution issue. Below, we shed light on how to prevent your ecommerce store from Guruincsite Magento disaster.

UPD (21.10.15) SUPEE-6788 will help you solve the Guruincsite issue

Continue Reading