Improved Import & Export major update - full Google Sheets & Drive integration. Fixed price Magento 1 > Magento 2 migration service! EXPLORE

"security"

Magento First Aid: Threat-Detection, Monitoring, Medication, Analepsy, & Immune Stimulation For E-Commerce Websites

- E-Commerce, Magento, Magento 2

Check Whether Your Magento Website Has Been Hacked & Clean It Up

In the following article, we share all the information necessary to bail up a hacked Magento website (no matter, it is Magento 1 or Magento 2) and prevent possible inbreaks. Commonly, the most significant concern is that you may not even know that your e-commerce store has been attacked. Therefore, it is necessary to check whether such an episode took place or not. If offenders got claws into your business, you have to clean up an infected Magento site and extinguish the malicious impact. Moreover, it is necessary to take care of further possible intrusions. To help you with that, we discuss how to identify, fix, and protect your Magento installation and encapsulate information about the most prevalent break-in types and ways malefactors turn e-commerce stores to their advantage. Continue Reading

PSD2 & Magento 2: Payment Services Directive & 3D Secure 2.0 Explained 

- E-Commerce, Magento 2

magento 2 PSD2 3d secure 2

The world of retail banking will never be the same. In 2018, an essential change to the EU legislation called PSD2 took effect so that banks are no longer monopolists on their customers’ account data. What is the Payment Service Directive? How will PSD2 impact e-commerce in general and Magento 2 in particular? How to prepare for the new changes? You will find answers to these and other questions below. Continue Reading

CloudBleed – Cloudy With A Rain of Data

CloudFlare CloudBleed

Last week, Tavis Ormandy from Google’s Project Zero discovered a huge problem in the security of CloudFlare‘s edge servers. He contacted the company and reported that corrupted web pages were returned by some HTTP requests run through the popular hosting provider. Below, we shed light on the problem as well as provide information on how to prevent Magento form the new bottleneck dubbed CloudBleed. Continue Reading

SUPEE-8788 – A New Magento Security Patch

- Magento tips & tricks

Extendware Review Reminder Magento Extension Review; Extendware Review Reminder Magento Module Overview

There is already a post dedicated to Magento security patches in our blog. SUPEE-6482, SUPEE-6285, SUPEE-5994, SUPEE-5344, and others are described here: Magento critical security patches. And since it includes too much information, we’ve decided to create a new one which sheds light on the latest patch – SUPEE-8788. The new security improvement is vital since it fixes lots of vulnerabilities. Although most of them haven’t been utilized in attacks, it’s not the reason to ignore SUPEE-8788. Continue Reading

Guruincsite Magento Disaster

- E-Commerce

Guruincsite malware - a new Magento Magento Disaster

A new Magento malware has been discovered and it is a malicious script by Guruincsite. Unfortunately, a new attack vector is not identified, but we already know that the disease makes Magento websites vulnerable to a code execution issue. Below, we shed light on how to prevent your ecommerce store from Guruincsite Magento disaster.

UPD (21.10.15) SUPEE-6788 will help you solve the Guruincsite issue

Continue Reading

Magento Security Ultimate Guide

- E-Commerce

Ultimate Guide to Magento Security

Thousands of Magento websites have been hacked recently. Luckily, there are several useful methods designed to fix the current problems. If your e-commerce website is insecure, then you should hurry up to prevent the undesirable consequences. If your store is affected, it is also important not to delay the solution of the problem. In the post below, we gathered all important information about Magento security issues, which will be useful in both cases.

Magento critical security patches SUPEE-5994, SUPEE-5344, SUPEE-1533 (Shoplift) (all official Magento security patches) Continue Reading