Sysadmins of the North
Share now!





Critical Magento Shoplift Vulnerability (SUPEE-5344)

Web security firm Sucuri reports on their blog, that over 50% of all Magento installations haven’t applied a critical security patch (SUPEE-5344). Leaving them open to attacks. The security patch, to address a remote command execution (RCE) vulnerability, was released back in February.

This means hundreds of thousands of websites are vulnerable right now, worst yet they are Ecommerce websites. This means that they are used to sell goods online, capturing personal identifiable information (PII), including credit card information. The impacts of Magento websites getting compromised can be devastating for every online buyer that uses or has used a website built on the platform.

Read more at Sucuri Blog.

Protip:
Learn about important Magento database and file system maintenance

About the Author Jan Reilink

My name is Jan. I am not a hacker, coder, developer, programmer or guru. I am merely a system administrator, doing my daily thing at Vevida in the Netherlands. With over 15 years of experience, my specialties include Windows Server, IIS, Linux (CentOS, Debian), security, PHP, WordPress, websites & optimization. Want to support me and donate? Use this link: https://paypal.me/jreilink.

follow me on:


Thank you!

Leave a Comment:

Skip to content