In 2009 we re-focused our efforts on providing the best possible service for the newly emerging Magento e-commerce platform.
We provide a fully managed, fast, PCI compliant, safe and secure platform for clients of all sizes to grow their businesses knowing that help, advice and support is always on hand. With 24/7 support and around the clock url monitoring. Whether you are a sole trader or a large web design agency you will get the same first class hosting platform and dedicated support. If you are looking for the host to grow your business with… welcome aboard!
We pride ourselves on providing an excellent hosting service, along with expert support.
You don’t need to take our word for it, we’re proud to have a 5* Excellent rating on Trustpilot.
Read our customer reviews on Trustpilot
Introduction: Plesk Panel vs cPanel Plesk vs cPanel: two heavy hitters in the world of GUI (Graphical User Interfaces) for managing web hosting accounts. Here at Dx3Webs we have continued to provide a Plesk licence with all our packages. Despite Plesk Panel increasing in price (a cost we have often absorbed) it is still our […]
A Web hosting Glossary So, you have your products, your vision is laid out and you are ready to go. Now you just have to choose a host. but what’s this, a world of acronyms and server hosting tech related jargon. This blog is intended to act as a reference to aid anyone who is […]
The last two years have, by any measure, been challenging.Fast approaching the end of the year and we are faced with headlines stating “e-commerce will record negative growth in 2022”.Quite the sound bite I think you will agree.As always there is more to the story and it is not all doom and gloom. It is […]
Adobe 2.4.0-2.4.5 security hotfix for Adobe Commerce and Magento Open Source. Important: Released on October 11 2022 the security hotfix includes an update that resolves a Cross-site Scripting vulnerability tracked by CVE-2022-35698. No exploits have have reported but it is recommended that the patch is applied ASAP. Below is a list of all affected products […]
Magento Quality Patches Tool The Magento Quality Patches Tool [QPT] is a command-line tool that delivers quality patches for Magento Commerce and Magento Open Source. Quality Patches are provided by both Adobe Support and the Magento Open Source Community. The QPT is for quality patches only.Security patches are available in the Magento Security Centre. Using […]
A threat alert has been identified by Foregenix via their FGX-Web solution. The attack both breaches and reinfects target sites. Forgenix states: “The entry point of these breaches appears to be a vulnerability in unpatched versions of Magento, with the threat actors placing additional backdoors on the site, as well as their card harvesting malware.” […]
FishPig Hack Hackers have breached FishPig software vendor resulting in a supply-chain hack. Having gained access to FishPigs server infrastructure, malicious code was added to vendors software. The Remote Access Trojan (RAT), dubbed “Rekoobe” hides on the server as a background process. Sansec, the eCommerce malware and vulnerability detection service, stated: “It is likely that […]
On August 9th Adobe released Magento 2.4.5 for general availability. Featuring 290 quality fixes and enhancements. Adobe have continued to focus on performance, security, and the quality of platform experience. The release is great news for all proving Adobe’s continued support and dedication to the platform. One important note: Magento 2.3 will reach End-Of-Life in […]
Magento Release Schedule Looking at the Magento Release schedule it is clear Adobe continue to innovate and drive forward their eCommerce technology. Offering robust features designed to improve shopping experiences and the experience of the store admin. With the release of Magento 2.4.4 in March, as covered here, Adobe Magento continues to push forward in […]
While our Magento packages deliver the best value/performance you will find anywhere on the planet there is one tool that will speed up your website load times even further: Varnish. One of the key selling points of Magento 2 from the early hype was that not only will all versions come with a Full Page […]
As well as allowing users quick access to a filterable list of web logs Plesk also allows you to manage any log file from with in the web based GUI. This is a trivial process and only needs to be done once. Here are the quicks steps needed to manage your magento logs from within […]
In this Blog we are featuring the Plesk Laravel Toolkit. Laravel Laravel is an open sourced PHP framework. It provides built-in features which enable developing web apps easier and faster. Features include: A modular packaging system with dependency management Automatic testing A complete authentication system Homestead, a portable, virtual development environment. MVC (Model-View-Controller) Laravel implements […]
Magento 2 PHP 8.x Compatibility Checker Is your site ready for PHP 8.1 ? Magento Open Source 2.4.4 introduced support for PHP 8.1. PHP 8.1 is a major improvement over previous versions. 8.1 is not an incremental update. There are new features, quality of life improvements and, importantly, some legacy features have been deprecated to […]
Plesk In this Blog we are featuring Plesk WordPress Toolkit. Plesk is Dx3webs go-to choice for a web based control panel for server management. Plesk offers a range of features which enable the user to better operate, manage and monitor their sites. Webmasters can set up FTP accounts, add domains and create MySQL. One such […]
For sometime now magento has required ElasticSearch. However, occasionally you find a site trapped in a chicken and egg situation where the code will not reindex or is throwing an error eg Could not ping search engine: No alive nodes found in your cluster as magento defaults to the default port of 9200. If you […]
Magento 2.4.4 is now available. Adobe’s focus while deigning Magento 2.4.4 has been on performance, headless support and security. There have been various major improvements introduced in this launch. These improvements will help keep Magento merchants competitive with the latest technologies, shopping experience enhancement and improved management experience for admins. Magento 2.4.4 built on PHP […]
Hyvä Theme For this blog we will be looking at Hyvä Theme. Hyvä Theme is a new frontend designed to build out storefronts in Magento 2. Its primary focus is on speed and performance after continuing frustration with Luma. Luma Luma is Magento 2s standard Frontend since 2015. eCommerce has continually developed but Magento’s frontend […]
Shopware eCommerce Shopware eCommerce platform is currently taking Europe by storm. Here we discuss why and if it is right for you. Shopware 6 is available in the following editions: Community edition (Open Source) Professional edition Shopware Enterprise The blog, unless stated, will concentrate on the free Open-Source Community Edition. Introducing Shopware 6 Simply put […]
eCommerce: Hosted vs Self Hosted There are so many decisions to be made when starting your online store. The very first of these decisions is a hosted or self hosted eCommerce platform. We will first look at what Hosted and Self Hosted platforms are. Hosted eCommerce A hosted eCommerce platform is provided by a company […]
Magento 2.4.3 launch was a halo event for the community. Included with a host of improvements to Magento, major updates to Page Builder were introduced. Page Builder has been in continual development for many years. In October 2020 the Magento Commerce 2.4.1 displayed a huge shift in its development. This version included Immersive full screen […]
MAGENTO TIP: PLACE CATEGORY IMAGE ABOVE MAIN LAYOUT BELOW NAV 7 Jun 2013 Sometime the default position of the category images (top of the main col above product grid) breaks the design of a site. Ideally what we want is a full page banner that runs the full width of the page. Desired Layout Default […]
A recent update to php from the Atomic repository is causing issues for some servers and plesk users in general. Typical symptoms will be : Starting httpd: Syntax error on line 31 of /etc/httpd/conf.d/php.conf: Invalid command ‘php_value’, perhaps misspelled or defined by a module not included in the server configuration and various 501 errors.. Switching […]
Dx3webs has one purpose: To provide the best possible hosting environment for your Mageneto store. To allow your business to thrive in the online market place. To this end we have built a wide range of Magento specific Enterprise grade hosting environments for businesses of all sizes. We focus on three areas. Speed: Security: Support […]
Many of our clients have been asking for a hosting environment that offers the same speed and reliability of our shared hosting but with greater flexibility. After running endless benchmarks and tests we have create a new Magento specific VPS environment built on top of Parallels Virtuozzo Virtual Private Server technology. So now you can […]
HHVM (HipHop Virtual Machine) is a Facebook invention that solved a major issue at Facebook that is, how to get a system written in PHP and continuously developed in PHP, to run in a manner that would accommodate 1 billion + users. PHP is great for rapid development however, as any Magento store owner knows, […]
UPDATE: a more useful replacement for currency translation can be found here: https://blog.philwinkle.com/webservicex-is-down-i-have-a-fix/ ORIGINAL POST: I thought this issue was worth raising as it is affecting a lot of stores selling in multiple currencies. The problem is that the WebserviceX service is failing more often than it works meaning that many stores have out dated currency […]
A few of our clients are using PayPal Pro Hosted as a way to collect and process credit cards on their Magento sites. Fortunately, it is the least used of the Paypal options built into Magento by default. We have been helping a few clients track down an issue whereby a number of customers were unable […]
One of the benefits of Magento is the huge industry of Extensions and Templates that has grown up over the last couple of years. There are thousands of well produced, beautiful and cleanly coded Templates. There are also some that are not. However, if you pruchase from some of the moderated Template providers eg Theme Forest and […]
If you find that your custom theme no longer allows the Update Cart button to work after an upgrade to 1.8x then you need to make some alterations to you cart.phtml file. Add <?php echo $this->getBlockHtml(‘formkey’); ?> After your <form action=”<?php echo $this->getUrl(‘checkout/cart/updatePost’) ?>” method=”post”> You may also need to do the same for your checkout […]
Magento offers you the ability to create Anchor Categories. Then this is where its subcategories are shown like layered navigation options. For example if you choose to have ‘Electronics’ as the anchor category, then the subcategories will be shown in a layered navigation way like this; Laptop TV’s Mobile Phones To create an Anchor Category, […]
Magento allows you to add as many products to your store as you wish. You also have the opportunity to fill in any information you want about the product to entice customers into buying it. It is possible to add ‘Meta Information’ which will make your product easier to find from a search engine such […]
Subcategories are another way for customers to identify specific products on your website without searching through products they don’t want. Magento offers the ability for a category to have as many subcategories as needed and they can be accessed by the customer through the categories drop down menu on your site navigation bar. In turn […]
Magento provides a basic content management system to present your information using however many pages you want. The first important pages to show your customers who you are and a little bit about you and your store are your ‘About Us’ or ‘Contact Us’. By going to the backend of your website and filling in […]
Magento offers the ability to create store email addresses for your website. This will offer a more professional look when emailing customers and you can personalize the name of these to what you wish. You can allocate specific emails for General Contact, Customer Support and Sales. These emails are also used to send error reports […]
Magento offers you the ability to configure your shipping settings from the backend of your website, which will mean you can provide customers with a range of methods and costs during checkout. It is possible to link in major couriers meaning you can print the labels straight away and send it off, Magento has links […]
Magento offers the ability to create store email addresses for your website. This will offer a more professional look when emailing customers and you can personalize the name of these to what you wish. You can allocate specific emails for General Contact, Customer Support and Sales. These emails are also used to send error reports […]
Tags can be used by customers to find a selection of products on your site. The tag describes a certain aspect of the product, such as; Red Electronic Gift Popular tags make it easier for customers to find a product of a specific type without hunting through the website, which is more likely to make […]
Although polls are often the 1st thing that are turned off when creating your site they do have their place. Magento has integrated polls from an early date and there is a management interface to allow you to create new questions and answers. Used correctly you can collect insights / opinions / trends from your […]
Dx3webs is pleased to announce that all our Magento optimized VPS servers now come with HHVM as a standard option. This allows even faster running of your magento store. As you will know if you have followed our blog or twitter feed we are really excited about the development of HHVM and the improvements that […]
Ebay is to close their hosted Magento Go e-commerce package on the 1st February 2015 and have closed the site to new businesses. The announcement was made by Mark Lavelle, SVP, Product and Strategy, eBay Enterprise on the home page of the service this week. Magento Go is a service that provides businesses access to a […]
Every minute of every day your Magento site is being probed by some bot trying to find a hole in your defences. There are a number of steps you can take to secure your site and keep your customers safe. Quick wins 1) Never use /admin as your Magento control panel home page. Simply changing […]
WordPress has once again been the butt of many social media postings regarding security after another WordPress vulnerability was found in the MailPoet plugin details here> No matter how useful you find WordPress there is no doubt that if offers a large target for anyone wanting to hack your site. By combining WordPress and Magento both applications […]
After a change to the latest version of Filezilla many people are seeing: Error: GnuTLS error -12: A TLS fatal alert has been received. Error: Could not connect to server when using plain ftp as Filezilla have changed the default connection type to “explicit FTP over TLS if available“. If you wish to use FTPs […]
If you have ever come across an extension that you know has a newer version but magento pretends it is not there eg ./mage upgrade http://connect20.magentocommerce.com/community/ m2epro_ebay_magento Checking dependencies of packages Already installed: community/m2epro_ebay_magento 6.2.2, skipping Enter… ./mage clear-cache This will force magento to look with new fresh eyes and magically upgrade your extension for […]
This is a common issue for site which have a long list of complex Custom options. At some point adding a new options will save and remove the new options. More alarming is when this happens after a server move. A product may have hundreds of Custom options which once saved suddenly vanish. The problem […]
Very interesting 2015 stack exchange survey results: Educators take note.. here is a job providing 2015 stack exchange survey results Very interesting 2015 stack exchange survey results: Educators take note.. here is a job providing £50k per year in salary with 80% job satisfaction where 40% of those employed did not learn it from school […]
Domain names As we frequently advise customers it is always best to keep services in contracts you control. This applies equally to your domain name. Never have this registered in a name other than your own, it is easy to do and a number of reliable domain registrars exist. Domain names are extremely important to any business and can be a […]
2015 Patches SUPEE-6285 Patch Bundle Date of Release: 07/07/2015 This bundle includes protection against the following security-related issues: Customer Information Leak via RSS and Privilege Escalation Request Forgery in Magento Connect Leads to Code Execution Cross-site Scripting in Wishlist Cross-site Scripting in Cart Store Path Disclosure Permissions on Log Files too Broad Cross-site Scripting in […]
Technology updates and quality improvements: This new release includes the latest versions of the Zend 1 Framework and Redis integration, as well as over 105 quality improvements throughout the product. Automated functional testing framework: Community Edition merchants with in-house development teams can now access nearly 170 automated functional tests. This can help improve implementation quality […]
Full details as always on the Magento site: https://magento.com/security/patches/supee-6788 Note that this patch may break backwards compatibility with some extension. Check with your extension provider for updates or compatibility before patching. As usual we are happy to patch your site for you on request.
SUPEE-7405 Patch is a bundle of patches for Magento 1.x that resolve several security-related issues. Install asap We highly recommend all users of Magento Community Edition, versions 1.4.0.0 – 1.9.2.2 to either install the SUPEE-7405 patch bundle, or upgrade to Community Edition 1.9.2.3.As always we are happy to install on request.
A COMPARISON OF DX3WEBS DEDICATED SERVERS VS AWS CLOUD SOLUTION DX3Webs Amazon Web Services Dedicated server belongs to you for the contract period. No third party can add or make changes to the server guaranteeing its performance. The AWS instance is hosted on a server shared by a whole range of customers where both […]
There is never a time to stand still on the world of eCommerce and as always Dx3webs are helping you benefit from the latest technology and developments. We already support many of the coolest 2016 technologies available including Magento 2, php 7 and HHVM. Today along side our new Magento 2 based web site we […]
Magento is pushing forward with its rapid development of the Magento 2 platform and on schedule has released the latest version. Magento 2.1.0 is now available to download. Improvements include Paypal enhancements Braintree Hosted Fields allows data input for individual fields in iFrames on the Braintree site. Improved search in the admin interface, global synonyms search. […]
MAGENTO 2 IS FIRMLY HERE This week Magento 2.1.0 was released passing that key .1 mile stone. After a few buggy releases this marks the point where Magento 2 is stable and ready for the real world. Magento 2.1 brings additional functionality as well as a host of security and bug fixes. Our new Magento […]
We have previously explored the advantages of using a dedicated Magento host like Dx3webs v above Amazon Web services. However, it is always best to back this up with real world case studies. We regularly transfer sites from AWS to our infrastructure so we decided to take a few measurements before and after. In this case […]
Major security issue All sites using up to version 2.7.6 of the popular Webforms Pro module for magento 1.x should upgrade to the latest version (2.7.7) immediately. Or if this is not possible please delete the following folder /js/webforms/upload The following update was sent to all customers WebForms Pro Security Update If you have WebForms […]
Site speed is important. It is one of our key mantras.. Speed, security, stability. The faster your site loads the more money you make. It is one of the reasons we as a company exist. After years of development we can tweak sites / servers to run faster than our competitors. To this end we […]
Many clients have been in touch wondering what the new means in the latest version of Chrome browser. Once clicked Chrome tells the user that “Your connection to this site is not Secure”. For an e-commerce site owner and to shoppers this message, which is meant to be neutral, sounds like a warning. This is all […]
UPDATE: Pathces for magento versions prior to 1.9 have been pulled for now and will be re-released in the next couple of days. SUPEE-8788, Enterprise Edition 1.14.3 and Community Edition 1.9.3 address Zend framework and payment vulnerabilities, ensure sessions are invalidated after a user logs out, and make several other security enhancements that are detailed […]
As of Magneto 1.9.3 magento have finally added brute force protection to the downloader folder. As you may be aware even if you have changed your default admin path ie to anything other that /admin Magento connection is still accessible at yourdomain.com/downloader. The fix for this is to rename your downloader folder or move it […]
A number of store owners are reporting being hit by a wave of scam emails all designed to convince the store owner that they have taken money from a customer. The emails are all similar claiming that they have been charged a number of times by the store or have been charged without receiving goods. […]
We have been encouraging all store owners to move to https over the last year or so. An ssl certificate with warranty can be had for as little as £39.99 per year or even a Let’s Encrypt non-warranty ssl for free. So there is no excuse for not serving all pages over https. Magento has two base […]
2016 was a great year for Dx3webs and our customers. We continued our trend of 50% growth year on year and we are investing this in our platform, R&D and customers services. We have continued to expand across Europe and the US. We were particularly pleased to win over North40.com against stiff competition from large […]
If you opt to purchase a 3rd party ssl you will need to install this yourself in Plesk. 1) Step one is to raise / generate your CSR. Log into Plesk and from Websites and domains select SSL/TLS Certificates Select Add SSL/TLS certificate Give the SSL a title eg ev2017 Complete the information accurately. This will be encoded into your […]
SUPEE-10266, Magento Commerce 1.4.3.6 and Open Source 1.9.3.6 contain multiple security enhancements that help close cross-site request forgery (CSRF), unauthorized data leak, and authenticated Admin user remote code execution vulnerabilities. As always raise a ticket and we will apply the patch Full details here: https://magento.com/security/patches/supee-10266
Magento has released new versions of Magento Commerce and Magento Open Source to increase product security: Magento Commerce 1.14.3.7 Magento Open Source 1.9.3.7 SUPEE-10415 (patch for earlier Magento 1.x versions) These releases contain multiple security changes that help close cross-site scripting and authenticated Admin user remote code execution vulnerabilities. We […]
Each year we trawl everyone of our competitors websites to ensure that we are offering bigger and better hardware, more services in the stated price and best value for money. As a result we have tweaked some prices and, in some cases, drastically increased the resources for some packages. The headlines.. Shared hosting has seen an […]
While it seemed a long time in the future when this was 1st announced that time is almost upon us. In July this year any site / web page that is not using https will be flagged as “NOT Secure” While this not a problem to a casual blog for an ecommerce site this is […]
SUPEE-10570, Magento Commerce 1.14.3.8 and Open Source 1.9.3.8 contain multiple security enhancements that help close remote code execution (RCE), cross-site scripting (XSS, and other issues). These releases also include small functional fixes listed in the release notes. Information on all the changes in 1.14.3.8 and 1.9.3.8 releases is available in the Magento Commerce and Magento Open Source release notes. […]
Black Friday and the long-term change in shoppers habits Barclay Card, who currently process nearly half of all UK debit and credit card transactions, stated there was a rise of 8% on 2016 spending during Black Friday. What these figure don’t show is a continuing shift in customers shopping habits with a decrease in people […]
To improve the security of our clients and their end users we have decided to actively disable the Direct payment method provided by the Ebizmarts Sagepay suite. The Ebizmarts Sagepay suite, both the free and the Commercial version is a popular Payment Method for many magento merchants. It offers 3 methods of accepting payment methods. Form. This […]
The PCI council has stated that by the 30 June 2018 all SSL/early TLS encryption protocols should be disabled in favour of TLS 1.1 or higher (TLS v1.2 is soon to be mandated by most payment gateways) in order to meet the PCI Data Security Standard (PCI DSS) for safeguarding payment data. Please note that […]
The figures speak for themselves: 78% of ecommerce websites are at risk of breach according to 60,000 scans on Magento sites carried out using Foregenix handy scan your website tool. The 78% of sites are missing critical patches where 5% are confirmed to have “harvesting malware stealing their customer details” according to the article. DATA breaches are nothing new […]
Security, security, security As covered in our recent blog online security is more important than ever. When running a bricks and mortar shop you would know to never leave the shop unattended, to lock the door and drop the shutters on a night and set the alarm. Online shops are the same and although the various forms […]
Magento 2: PHP 7.0 / 7.1 Here at DX3Webs we focus on providing the best hardware setup giving you the ideal platform to meet your needs. With a focus on the speed of your site our servers are high specification to enable a quick responsive experience for the end user. Carefully chosen hardware can only […]
Security: Phishing attacks. Site secured, a random generated login password, firewall in place and even a Web Application Firewall installed, security all taken care of. All except one other factor phishing. Phishing The fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information, such as […]
What is Varnish Cache Varnish Cache is a web application accelerator also known as a caching HTTP reverse proxy. It is installed in front of any server that speaks HTTP and configured to cache the contents. The user puts in a request which first goes to the Varnish server and if no cache exists would […]
MAGENTO 2: A WORTHY UPGRADE 30 Apr 2018 Magento is the leading platform in eCommerce with estimates suggesting it is implemented in 1 in 4 online businesses. With the release of Magento 2 in 2015 the development team aimed to ensure its popularity as the leading eCommerce platform. Magento 2 has been developed from the […]
In a bid to diversify Adobe has purchased Magento for $1.68 Billion from private equity firm Permira who made its purchase in 2015 from Ebay. Pending regulatory approval the deal is expected to go through in the third quarter of the fiscal year and represents Adobes largest purchase in nearly a decade. The purchase provides […]
Gartner have recently posted an article titled Magic Quadrant for Digital Commerce comparing various eCommerce solutions, here we will take a look at how Magento rates. Gartners definition / description of a digital commerce platform: “buying and selling of goods and services using digitalization technologies that result in a transaction of value to the customer. […]
A recent hack was discovered to have targeted Paypal, changing the API credentials enabling the thieves to intercept payments. The error log below shows how the incorrect email address was detected, however, the payment was still processed. ./var/log/exception.*******co.uk merchant emails do not match.’ in /var/www/vhosts/g:exception ‘Exception’ with message ‘Requested fadilahbhilal@gmail.com and configured *****@*******.co.uk/httpdocs/app/code/core/Mage/Paypal/Model/Ipn.php:258 ./var/log/payment_paypal_express.log: [exception] […]
For those not tempted by Magento 2, Magento 1 has recently had an official PHP 7.2 patch released. Compatibility: Magento Community (Open Source) 1.9.2.x up to Magento 1.9.3.x Magento Enterprise (Commerce) 1.14.2.x up to 1.14.3.x The *.patch files can be applied using either GIT or patch. PHP7.2 provides a boost over PHP7.1 of up to 13% […]
For those who are happy with their current old plan don’t worry, nothing will change. This promotion is to highlight the changes to our packages and the great benefits to be gained for very little additional outlay. Below is a list of both the old and new Magento Hosting packages offered by Dx3Webs. As you […]
It will no doubt come as a great relief to many that despite rumours circulating of support ending November 2018* (or in direct response to them) Magento have officially announced support will continue until June 2020 for Magento 1: “For Magento Commerce 1, we are providing software support through June 2020. Depending on your version, software support may include both quality fixes and security patches. For […]
PHP versions have a number of stages in their lifespan. Following each versions initial release the php branch will be supported for two years. Within this period of time bugs and security issues are reported, fixed, and released. After two years of bug and security fixes each version reverts to critical security support for one […]
Black Friday is fast approaching so this blog will highlight some of the best practices on the run-up to the event. Promotion Not every store participates in Black Friday so a banner with a message stating these will be the lowest prices / great deals is a great enticement for current customers to return to […]
A mobile phone for many is a constant companion, at home in front of the TV, or sat in a coffee shop enjoying a latte while browsing the internet. For eCommerce this translates to opportunity, if someone has a mobile phone they are a potential customer with access to your shop. Mobile sales have one […]
Any eCommerce store knows security is paramount to its success both by reputation and the cost of a breach. The latest, or re-occurring, attack we are looking at dubbed MageCart, has turned up in Shopper Approved. Shopper Approved is a customer rating tool kit used by hundreds of eCommerce sites and is the most recent […]
There are a number of useful and free third party website scanners available which can be a great addition to your tool box. Here we will look at three offerings from Foregenix, Sucuri and SSL Labs. Foregenix Founded in 2009 consisting of a team specialising in digital forensics the company developed extensively into compliance and […]
Researchers at Foregenix analysed more than 170,000 Magento eCommerce sites and found that of those using Magento 1 some 90% are at a ‘heightened’ risk with 30% of Magento 2 sites at an ‘elevated risk’. The heightened risk rate includes sites that have not been patched with recent updates with some missing patches released nearly […]
How secure are your 3rd party Magento extensions? Third party extensions are increasingly targeted in attempts to hack your store where many attacks have shifted focus to 3rd party components. Magento continues to be a target for payment skimmers. In 2015 attackers used the “Shoplift” vulnerability in the core Magento code base. An upgrade in […]
Magento Video Marketing in eCommerce sales. Buying online has one disadvantage compared to a visit to your local high street, the inability to examine the product you are looking at and see how it works. Static images, even high resolution ones, can only show so much. This is where video marketing can be a great […]
PHP 5.6 extended support has now officially ended (as converedd previously) and it will no longer be receiving updates nor security patches. As the last version of PHP5, PHP5.6 has been the longest supported version to date with active support starting in January 2015. All is not lost as we PHP 7.2 is ready to […]
Magento stores have witnessed an increase in SPAM user registrations. Originating from multiple IP addresses these attacks can easily overwhelm a small Magento store even when paired with a WAF. There are additional defences against such attacks that can be quickly and easily implemented. Block IPs This can be a short time fix. However, these […]
Hidden in the release notes of Magento 2.3, under Other Improvments we find: “Elasticsearch support for Magento Open Source version. Elasticsearch support was previously provided in Magento Commerce only.” So what does this mean? It translates to, anyone with a dedicated or VPS (cloud) server can request Dx3Webs to install Elasticsearch. What is Elasticsearch It […]
Authorize.Net: support ending for MD5 Authorize.net will stop supporting MD5 based hash usage on March 14. Magento implements the Authorize.Net Direct Post payment method, using Authorize.Net’s AIM (Advanced Integration Method) and DPM (Direct Post method) APIs, which use MD5 based hash. Authorize.Net will stop supporting MD5 based hash tag on March 14. This issue affects all Magento […]
Post-Purchase: an undervalued opportunity? Your customer has hit that buy button and your job has only just started. Communication When managing and growing an eCommerce store, providing delivery choices and keeping your customers up-to-date during the process can lead to a better relationship and return business. As we know, acknowledging an order and providing a tracking […]
The Magestore Locator extension version 1.0.2 (and earlier versions) that could result in unauthorised access to sensitive information. Magento has urged customers running Magestore Locator extension to disable it or block requests and request/implement an update from the extension developer. Magento has had reports that the extension has been exploited. In particular users should have their […]
For our customers who run WordPress sites an important announcement has been made. WordPress has now officially ended support for PHP 5.2 – 5.5. Although security updates are still available minimum of PHP 5.6 is now a requirement to update to the latest WordPress version. The decision will not affect the majority of WordPress users […]
The release of Magento 2.3.1 is to include the Page Builder content editing tool, inventory and performance enhancements as well as developer and security updates. Updated versions of Magento 1, 2.1 and 2.2 are to be made available on the same day. Page Builder Exclusive to Commerce 2.3.1. No coding required to design and build […]
Magento Commerce 1.14.4.1 and Open Source 1.9.4.1. Contains multiple security enhancements that help close remote code execution (RCE), cross-site scripting (XSS), cross-site request forgery (CSRF) and other vulnerabilities. Available for: Magento Commerce 1.9.0.0-1.14.4.0 (supee-11086 or upgrade to Magento Commerce 1.14.4.1) Magento Open Source 1.5.0.0-1.9.4.0 (SUPEE-11086 or upgrade to Magento Open Source 1.9.4.1) Information for all […]
Ubuntu 14.04 reaches end of live at the end of April 2019. So OS upgrades will be at the top of a lot of sysadmin TODO lists right now. While Ubuntu 16.04 will be supported till April 2021 most will be looking to jump to Ubuntu 18.04 which be now be supported for TEN YEARS […]
There are a few reasons why we built our hosting solution around Plesk. 1) It is extremely light weight. Essentially its only function is to provide a front end for configuring nginx / apache / php. That is it. There are no other over heads. 2) It is extremely flexible. You can specify any version […]
Supee-11155 has now been released. This update offers a range of security updates that help close remote code executions (RCE), cross-site scripting (XSS), cross-site request forgery (CSRF) and other vulnerabilities. This is an important update given the range of security issues addressed. Patches and upgrades are available for the following Magento versions: Magento Commerce […]
A presentation by John Hughes on indexes and why refreshing them is not best practice or as he put it “Stop refreshing the @#$%&! indexes” The presentation takes an irreverent look at indexes laying out the aims, what indexes are, their impact on performance and what should be done. We also have knights, kings, dancing and […]
Magento recently put out the following warning to all merchants. A vulnerability has recently been discovered in PHP and we recommend Magento Commerce customers adopt changes to address the issue. MS-ISAC has issued an alert related to multiple vulnerabilities that could allow for arbitrary code execution and a recommendation that all sites using PHP should […]
Magento 2.2.x support from Magento has come to an end as of the end of September. It is highly recommended that if you’re running 2.2.x that you look into upgrading to 2.3.x as soon as possible. The benefit of the upgrade is support given for the newer versions of PHP 7.2+ which are more secure […]
Google Chrome has announced it will soon block all non-HTTPS content starting January 2020. At first glance this may seam a mute point for many as there is currently no reason to be using HTTP when HTTPS exists. This move is directed at HTTPS pages loading non-HTTP content and resources. Google have said that this […]
Magento 2.3.3 and Patch 2.3.2-p2 This new release introduces a number of key benefits from changes to native integrated payments to PHP 7.3 support* We also see the implementation of almost 100 security fixes, faster loading times by displaying text while loading fonts in the background. Non-critical CSS tasks are now loaded at the end of the queue and a […]
Summary Adobe has released security updates for Adobe Commerce and Magento Open Source. These updates resolve a vulnerability rated critical. Successful exploitation could lead to arbitrary code execution. Adobe is aware that CVE-2022-24086 has been exploited in the wild in very limited attacks targeting Adobe Commerce merchants. Affected Versions Magento Open Source 2.4.3-p1 and earlier versions 2.3.7-p2 and earlier […]
Updates to EV (Extended Validation Certificate) SSL certificates. EV or Green Bar’ SSLs were 1st introduced in 2007 as a means of showing that the owner of the site had gone through extensive checks by the certificate providers to prove that there were indeed the owner of the domain in question. The idea was to […]
Magento Patch Update: Introducing several security enhancements including PSD2-compliant core payment methods. It is strongly recommended that you upgrade your site to ensure you continue to benefit from the most up to date security compliance and performance. Important notice: This is the last update for Magento 2.2.* and no further updates will be released. Introducing: […]
Apple have made a significant announcement regarding how the Safari Browser treats SSL certificates. From September 1 2020 certificates older than 398 days will not be accepted as valid. Older certs, issued prior to the deadline, are unaffected by this rule. Tim Callan, senior fellow at PKI and SSL management firm Sectigo, stated “This week Apple […]
As you will know Adobe announced that Magento 1 (M1) will reach end of life June 2020. Store owners will be quite rightly concerned about how this impacts their site and what they should be doing now. While we know that many of you have re-platforming well in hand we are aware that others will […]
