New Security Update

Install critical updates for Magento 1.x and Magento 2.x versions

Authored by:

Magento Security Team

Dec 9, 2016

Advanced developers can use Yara tool with malware discovery rules to detect infected files.

Oct 29, 2016

This updated article shares how you can protect your store from brute force password guessing attacks.

Apr 26, 2016

An SQL injection vulnerability has been found in multiple third-party extensions and themes

Mar 30, 2016

Important information on how Magento 2.0 handles anonymous web APIs

Mar 16, 2016

A newly-identified malware appears to capture checkout information, including credit card data, from infected sites

Feb 18, 2016

Update to the Shoplift vulnerability - be sure to apply all official Magento security patches

Feb 11, 2016

Review your site and make sure to implement all Magento security updates

Dec 8, 2015

How to outsmart the bad guys

Nov 30, 2015

The results are in!

Nov 16, 2015

Malware deployed on site can collect and forward credit card information