Magento is committed to delivering security updates to our customers. Because most exploits tend to target software installations that are not up-to-date with the latest security updates, we always strongly recommend that users install security updates as soon as they are available.
Security Center
Get the latest patches, security updates, and best practices for your Magento sites
Malware
We are aware of reports that phishing attempts are impersonating Magento and are being used for targeted attacks. This misleading phishing email encourages users to click on a link that indicates all users are required to register for an alert platform. Please review this blog for more information.
Hackers impersonating Magento Commerce have sent an email that contains malware to merchants and agencies using our products.
Learn how to protect your store from a newly-discovered vulnerability present in all major Linux Operating Systems
Ecommerce sites are prime targets for malware attacks. Learn what you can do to protect your business
A newly-identified malware appears to capture checkout information, including credit card data, from infected sites
Update to the Shoplift vulnerability - be sure to apply all official Magento security patches
Review your site and make sure to implement all Magento security updates
Malware deployed on site can collect and forward credit card information
Magento merchants are strongly advised to apply all security patches and follow best practices to ensure the security of their sites