Magento periodically uncovers vulnerabilities in its software security and creates fixes or patches to successfully combat these issues. In Magento’s latest update, a number of vulnerabilities were successfully addressed with two security patches that should be applied to your website immediately. By not doing so, you may be leaving the door open to security breaches that could severely impact your business.
Our technical team have proactively patched all Convert Digital managed sites to ensure these vulnerabilities have been mitigated. However, if you are not sure whether your website is up-to-date, contact us to receive your site’s status.
What are these patches and why do you need them?
Available since February, SUPEE-5344 Patch solves a “shoplift” bug in Magento Enterprise Edition and Magento Community Edition. Applying this patch stops attackers from potentially obtaining control over your store and its sensitive data, including personal customer information.Although this patch has been available for months, a number of merchants have yet to install it. You can check to see whether your site has been updated here.http://magento.com/security-patch
Released mid May, the SUPEE-5994 Patch Bundle addresses multiple security vulnerabilities in Magento Community Edition software, including issues that can put customers’ information at risk. For more information, click here.