Magento is making Google reCAPTCHA and Two-Factor Authentication (2FA) functionality available for Magento Open Source, Commerce, and Commerce (Cloud) v2.1 and v2.2. These features provide enhanced access security to protect your Magento instance by reducing unauthorized access and significantly reducing spam.
Get the latest patches, security updates, and best practices for your Magento sites
Hackers impersonating Magento Commerce have sent an email that contains malware to merchants and agencies using our products.
Merchants should check their mail sending settings to protect against a Zend Framework 1 vulnerability.
A newly-identified malware appears to capture checkout information, including credit card data, from infected sites
A new vulnerability has been identified for servers using SSL and TLS.
Malware deployed on site can collect and forward credit card information
Magento merchants are strongly advised to apply all security patches and follow best practices to ensure the security of their sites