CosmicSting attack threatens 75% of Adobe Commerce stores.
One week after the release of a critical security fix, just a quarter of all Adobe Commerce and Magento stores have been patched.
https://t.co/6V0946nzRy
ICYMI: the formerly legit https://t.co/l2BKOFSfYn is now in Chinese hands and serving malware. eComscan will alert you to any Magento modules that embed https://t.co/l2BKOFSfYn. Some 110K+ sites are affected 😱
https://t.co/bOPfuV1WRz
"While Apple previously revealed it was planning to drop support for progressive web apps (PWAs) in the EU to avoid building “an entirely new integration architecture” around DMA compliance, the company now says it will “continue to offer the existing Home Screen web apps capability” for EU users. However, these homescreen apps will still run using WebKit technology, with no option to be powered by third-party browser engines." https://t.co/PFCn9gOK6p
For the ones who use official PHP-FPM Docker image and not enable FTP extension, be careful, there is a change since PHP versions 8.1.28 / 8.2.15 / 8.3.2, it will break your FTP connections: https://t.co/vt3wdSbOg9
So a colleague and I went SUPER deep into Magento internals today because we were seeing a bunch of duplicate UPDATE queries on a project and I feel like we uncovered a flaw about as deep as you can get
Just released version 1.3.0 of my #Magento admin Redis report module 🥳
Confirmed support for @mage_os and you can now visualise the history of the health of your Redis instance 📈
Issues, requests, and contributions welcome at https://t.co/ZWzRSqfysD
⛔ As of November 26, PHP 8.0 is no longer supported, and PHP 8.1 is in security support mode.
🆙 Consider upgrading to PHP 8.2 or higher.
To read more about how to upgrade:
🔗 https://t.co/hsfZB20f7t
🔗 https://t.co/m1jRP6tp7o
🔗 https://t.co/GbijaAtFft
As promised, a more detailed analysis of CVE-2023-38218, a (sort of) unauthenticated privilege escalation for #magento2.
Scroll down for the composer patch. Stay safe! https://t.co/n4NMh58CBC
@LBajsarowicz@Mailchimp Cool we already suffered the first upgrade and will now suffer a second one removing the fields again from big tables...
This should be done by CLI not the way it has been rollbacked...