Security Center

Get the latest patches, security updates, and best practices for your Magento sites

New Security Update

Install critical updates for Magento 1.x and Magento 2.x versions

Mar 30, 2016

Important information on how Magento 2.0 handles anonymous web APIs

Mar 16, 2016

A newly-identified malware appears to capture checkout information, including credit card data, from infected sites

Mar 3, 2016

A new vulnerability has been identified for servers using SSL and TLS.

Feb 23, 2016

Multiple security patches. Risk: Critical for Magento Enteprise Edition prior to 1.14.2.3 and for Community Edition prior to 1.9.2.3

Feb 18, 2016

Update to the Shoplift vulnerability - be sure to apply all official Magento security patches

Feb 11, 2016

Review your site and make sure to implement all Magento security updates

Jan 20, 2016

This version contains multiple security and functional fixes. Risk: Critical for Magento Enterprise Edition and Community Edition prior to 2.0.1.

Jan 14, 2016

This guide outlines a multifaceted approach to improve the security of your Magento installation. 

Dec 8, 2015

How to outsmart the bad guys

Nov 30, 2015

The results are in!