Improved Import / Export MAJOR UPDATE 3.0 - Excel, Json, XML, APIs, automation, mapping, attributes, consecutive run and more EXPLORE

"security"

PSD2 & Magento 2: Payment Services Directive & 3D Secure 2.0 Explained 

- E-Commerce, Magento 2

magento 2 PSD2 3d secure 2

The world of retail banking will never be the same. In 2018, an essential change to the EU legislation called PSD2 took effect so that banks are no longer monopolists on their customers’ account data. What is the Payment Service Directive? How will PSD2 impact e-commerce in general and Magento 2 in particular? How to prepare for the new changes? You will find answers to these and other questions below. Continue Reading

CloudBleed – Cloudy With A Rain of Data

CloudFlare CloudBleed

Last week, Tavis Ormandy from Google’s Project Zero discovered a huge problem in the security of CloudFlare‘s edge servers. He contacted the company and reported that corrupted web pages were returned by some HTTP requests run through the popular hosting provider. Below, we shed light on the problem as well as provide information on how to prevent Magento form the new bottleneck dubbed CloudBleed. Continue Reading

SUPEE-8788 – A New Magento Security Patch

- Magento tips & tricks

Extendware Review Reminder Magento Extension Review; Extendware Review Reminder Magento Module Overview

There is already a post dedicated to Magento security patches in our blog. SUPEE-6482, SUPEE-6285, SUPEE-5994, SUPEE-5344, and others are described here: Magento critical security patches. And since it includes too much information, we’ve decided to create a new one which sheds light on the latest patch – SUPEE-8788. The new security improvement is vital since it fixes lots of vulnerabilities. Although most of them haven’t been utilized in attacks, it’s not the reason to ignore SUPEE-8788. Continue Reading

Guruincsite Magento Disaster

- E-Commerce

Guruincsite malware - a new Magento Magento Disaster

A new Magento malware has been discovered and it is a malicious script by Guruincsite. Unfortunately, a new attack vector is not identified, but we already know that the disease makes Magento websites vulnerable to a code execution issue. Below, we shed light on how to prevent your ecommerce store from Guruincsite Magento disaster.

UPD (21.10.15) SUPEE-6788 will help you solve the Guruincsite issue

Continue Reading

Magento Security Ultimate Guide

- E-Commerce

Ultimate Guide to Magento Security

Thousands of Magento websites have been hacked recently. Luckily, there are several useful methods designed to fix the current problems. If your e-commerce website is insecure, then you should hurry up to prevent the undesirable consequences. If your store is affected, it is also important not to delay the solution of the problem. In the post below, we gathered all important information about Magento security issues, which will be useful in both cases.

Magento critical security patches SUPEE-5994, SUPEE-5344, SUPEE-1533 (Shoplift) (all official Magento security patches) Continue Reading

Upgrade to Magento Community 1.9 (by SSH)

- Magento tips & tricks

Magento Community Edition 1.9.0.1 has ben released. It contains multiple improvements over older versions. 1.9.0.1 is a major release , so it’s very important not to miss it. In this post we will show you how to upgrade from previous Magento version to the new one. Don’t forget to try Magento CE 1.9.0.1 upgrade in a test environment. The operation is not risky, but there is always a chance to break something.

upgrade magento to 1.9

Continue Reading