Security Center

Get the latest patches, security updates, and best practices for your Magento sites

New Security Update

Install critical updates for Magento 1.x and Magento 2.x versions



Jan 7, 2019

We have become aware that hackers impersonating Magento, an Adobe Company, are sending emails that contain malware to merchants and agencies using Magento products.

Jul 18, 2018

Magento is making Google reCAPTCHA and Two-Factor Authentication (2FA) functionality available for Magento Open Source, Commerce, and Commerce (Cloud) v2.1 and v2.2. These features provide enhanced access security.

Apr 24, 2017

Hackers impersonating Magento Commerce have sent an email that contains malware to merchants and agencies using our products. 

Jan 13, 2017

Merchants should check their mail sending settings to protect against a Zend Framework 1 vulnerability.

May 11, 2016

First deadline is approaching for compliance with PayPal security updates.

Mar 16, 2016

A newly-identified malware appears to capture checkout information, including credit card data, from infected sites

Mar 3, 2016

A new vulnerability has been identified for servers using SSL and TLS.

Nov 30, 2015

The results are in!

Nov 16, 2015

Malware deployed on site can collect and forward credit card information

Nov 11, 2015

Magento merchants are strongly advised to apply all security patches and follow best practices to ensure the security of their sites