Well... a lot. Our software monitors the security profile of over 300,000 Magento websites across the Magento 1 and Magento 2 platforms.
Our forensic team helps a LOT of hacked Magento websites each year - much of our capability to detect threats comes from this experience.
We know how the criminals break in and steal data from Magento sites - Our mission is to protect small and growing businesses from criminals - through information, education and our technologies.
Download our latest report at the link below (scroll down for previous reports)
Nearly 180,000 websites remain on MAGENTO 1
91% Magento 1 websites are High/Critical Risk
30% Magento 2 websites are High/Critical Risk
This is age-old advice - so we wouldn't suggest it if it wasn't critical. Read our blog for advice on how to choose a safe password. Multi Factor Authentication will provide even stronger protection - a low-cost but highly effective security control.
This is the URL you and your team use to log in to your website. All Magento websites by default use the same variation of URL, and if an attacker finds your admin page, they have a far better shot at gaining access to your website. In fact... it's easy to break in, unless you have security in place to protect your site.
Never share accounts. Run regular audits on admin accounts - keep admin access to a minimum. You should know who has access to your website. If accounts are logging in at unexpected hours, this could be a sign that an attacker has compromised the account.
Many compromises involve files being added or changed on a website. Take a look at your change log for any suspicious file activity - who made those changes, were they planned, are the files legit?
Using an external malware/IOC scanner, such as WebScan for occasional on-demand scans - or sign up for our FGX-Web Lite service for daily external scans delivered to your inbox - can give you a quick and simple insight into the security posture of your website.
Both WebScan and FGX-Web include historic data so that you can track changes to your Risk Score over time.
Get started with FGX-Web today
Being such a popular e-commerce platform makes Magento an attractive target for hackers...
Here's our key Magento security tips to help you protect your website: