Blog – Security
A Module to enable Swagger in the Magento 2 Production Mode
Background - Swagger Magento 2 offers several endpoints for the REST API which can be used to receive and update nearly all types of data in Magento. In fact, the REST API coverage is one of the biggest advantages of Magento 2. On top of that, the REST API framework...
Applying the Magento Security Patch via Composer
Update February 17, 2022: A second patch was released which must be applied over the first one. I added instructions on how to apply that at the end of this blog post. On February 13, 2022, Adobe released a critical security patch named "APSB22-12" for all...
Magento shop security at integer_net – The SanSec integration
To prevent hacks and data theft, we use several mechanisms at integer_net: Always the latest Magento version - thanks to our Magento partnership, we usually have access to it before the official release Use of a Web Application Firewall ("WAF") to block SQL injection...
Anatomy of a Data Theft in Magento
Last year, we repeatedly saw headlines about Magento's security. Several security issues were discovered and fixed. But what could happen if an unauthorized person gains access to your online store - either due to a security issue or other means? We were able to get a...
The security of their online store is a task that each merchant should take seriously. It’s about the private data of their customers after all. As a partner of our clients, we point of security issues, suggest alternatives to fix them and inform about published patches which Magento offers to improve the stores’ security.
In our blog we write about security related topics when something noteworthy happens where we have first-hand information from which the whole community can benefit.