Shoplift is a dangerous Magento bug. It allows hackers to take e-commerce store under a full control. The threat was discovered by Check Point. You can easily fix it with the help of patch SUPEE-5344. A lot of Magento stores are still vulnerable, because they haven’t applied the patch yet. Below, you we show how to fix the problem.

UPD (15.05.15): SUPEE-5994 Magento security patch

 UPD (08.07.15): SUPEE-6285 Magento security patch

UPD (08.07.15): Magento Security Alert Registry

UPD (05.08.15): SUPEE-6482 Magento security patch

UPD (17.09.15): SUPEE-3762 Magento security patch

UPD (09.10.15): Magmi and Nginx

UPD (21.10.15): Guruincsite Magento Issue and SUPEE-6788 Magento security patch

UPD (24.11.15): Magento Security Patch SUPEE-6788 Performance Issues

UPD (28.01.16): SUPEE-7405 and SUPEE-7616

Unofficial but trustworthy FireGento Magento source mirror with all official Magento CE 1.7 – 1.9 critical patches included (SUPEE-5994, SUPEE-5344, SUPEE-1533)

Official guide to patch installation

All Magento security patches on GitHub

Magento Security Suite by Amasty

Continue Reading