Category: Magento
-
THE MAGIC OF “UPGRADE-INSECURE-REQUESTS”
We have been encouraging all store owners to move to https over the last year or so. An ssl certificate with warranty can be had for as little as £39.99 per year or even a Let’s Encrypt non-warranty ssl for free. So there is no excuse for not serving all pages over https. Magento has two base […]
-
SCAM EMAILS TARGETTING ECOMMERCE SITE OWNERS
A number of store owners are reporting being hit by a wave of scam emails all designed to convince the store owner that they have taken money from a customer. The emails are all similar claiming that they have been charged a number of times by the store or have been charged without receiving goods. […]
-
ACCESS IS LOCKED. PLEASE TRY AGAIN IN A FEW MINUTES
As of Magneto 1.9.3 magento have finally added brute force protection to the downloader folder. As you may be aware even if you have changed your default admin path ie to anything other that /admin Magento connection is still accessible at yourdomain.com/downloader. The fix for this is to rename your downloader folder or move it […]
-
SUPEE-8788 CRITICAL SECURITY PATCH NOW AVAILABLE FOR M1
UPDATE: Pathces for magento versions prior to 1.9 have been pulled for now and will be re-released in the next couple of days. SUPEE-8788, Enterprise Edition 1.14.3 and Community Edition 1.9.3 address Zend framework and payment vulnerabilities, ensure sessions are invalidated after a user logs out, and make several other security enhancements that are detailed […]
-
GOOGLE CONTINUES ITS PUSH TO FULL ENCRYPTION
Many clients have been in touch wondering what the new means in the latest version of Chrome browser. Once clicked Chrome tells the user that “Your connection to this site is not Secure”. For an e-commerce site owner and to shoppers this message, which is meant to be neutral, sounds like a warning. This is all […]
-
PHP 7 SPEED BOOST FOR FREE
Site speed is important. It is one of our key mantras.. Speed, security, stability. The faster your site loads the more money you make. It is one of the reasons we as a company exist. After years of development we can tweak sites / servers to run faster than our competitors. To this end we […]
-
WEBFORMS PRO 2 MODULE BY VLADIMIR POPOV VULNERABILITY
Major security issue All sites using up to version 2.7.6 of the popular Webforms Pro module for magento 1.x should upgrade to the latest version (2.7.7) immediately. Or if this is not possible please delete the following folder /js/webforms/upload The following update was sent to all customers WebForms Pro Security Update If you have WebForms […]
-
DX3 V AWS CASE STUDY
We have previously explored the advantages of using a dedicated Magento host like Dx3webs v above Amazon Web services. However, it is always best to back this up with real world case studies. We regularly transfer sites from AWS to our infrastructure so we decided to take a few measurements before and after. In this case […]
-
JULY NEWSLETTER AND UPDATES
MAGENTO 2 IS FIRMLY HERE This week Magento 2.1.0 was released passing that key .1 mile stone. After a few buggy releases this marks the point where Magento 2 is stable and ready for the real world. Magento 2.1 brings additional functionality as well as a host of security and bug fixes. Our new Magento […]
-
REJOICE! MAGENTO 2.1.0 IS HERE
Magento is pushing forward with its rapid development of the Magento 2 platform and on schedule has released the latest version. Magento 2.1.0 is now available to download. Improvements include Paypal enhancements Braintree Hosted Fields allows data input for individual fields in iFrames on the Braintree site. Improved search in the admin interface, global synonyms search. […]