Magento SUPEE-8788 patch

SUPEE-8788, Enterprise Edition 1.14.3 and Community Edition 1.9.3 address Zend framework and payment vulnerabilities, ensure sessions are invalidated after a user logs out, and make several other security enhancements that are detailed below.

Continue reading ...

Magento – Javascript Malware Issue

Decription: Magento Commerce has received reports of a JavaScript malware exploit that forwards credit card information from checkout pages to an external site. Attacks are likely using Admin or database access to implement the exploit. It is clear that unpatched Magento shops are being targeted through the original Shoplift path that we identified and patched […]

Continue reading ...