20181026.1 – Added Magecart zero day extensions checks

Magecart zero day attacks Recently it was brought to light by security researcher Willem de Groot that attackers are making use of unpublished security flaws in about two dozen Magento extensions. The vulnerabilities in these extensions allow the attackers to gain full control over the targeted websites via Remote Code Execution (RCE). Added checks The […]

Read more

Release 5852: Additional PHP Object Injection WAF rules

In this release we will expand on the configuration changes we’ve made in yesterday’s release which addressed a number of the PHP Object Injection vulnerabilities in third party Magento 1 extensions. Today’s change contains extra filters for probes we’ve seen with an URI encoded version of the payload and for probes where the payload is […]

Read more

Release 5850: Blocking Magecart zero-days

In this release we will deploy a preliminary new version of our Web Application Firewall which will block various forms of known attacks that have been encountered in the wild on a selection of the vulnerable Magento 1 extensions that were disclosed in this blogpost by Willem de Groot, security researcher and ex-Byte founder. The […]

Read more

Release 5840: hypernode-servicectl can also restart Redis

In this release we will push an update to the hypernode-servicectl command-line tool that will make it so that the app user is now also privileged to restart the Redis service. It will be possible to restart the default Redis instance that is commonly used for the full page cache, but it will also be […]

Read more

Release 5793: ImageMagick security update

This week a security release for imagemagick was pushed to fix a vulnerability relating to the underlying Ghostscript interpreter. Because in Magento sites it is not very common for non-trusted users to upload images that will be converted to one of these formats, this vulnerability isn’t very critical. But because people can get very creative […]

Read more

Release 5785: Migrating Hypernode DEV plans to the new Combell OpenStack

In this release we have started our previously announced effort to migrate production resources from DigitalOcean to the brand new Combell OpenStack cloud. This change will allow for a couple of cool new features like volume swap migration between the Magento Professional 3XL, 4XL and 5XL plans and way faster provisioning (around 10 minutes from […]

Read more

20180925.1 – Updated CC hijack and cryptojacking checks and updated style

Update Credit Card Hijack check Recently MagentoCore and MageCart have been getting some traction as Magento specific malware to skim credit card details. We’ve updated our signatures so we’re able to detect shops infected with this malware. Update Cryptojacking check Recently there were some updates to cryptojacker signatures. We’ve updated our database to make sure […]

Read more

Release 5734: Default n98-magerun.yaml configuration file

From this release on we will start placing a default .n98-magerun.yaml configuration file for Magerun in /data/web if no such file exists yet. Previously we already placed this file when a new node was ordered with a Magento 1 preinstallation. But, for the instructions in this article about installing Magento 1 on Hypernode to work […]

Read more

Release 5678: New hypernode-postsuper utility to clear mail queue

In this release we introduce a new command which exposes the capability of clearing out or removing individual items from the mail queue to the app user. The command is called hypernode-postsuper. Use case The common software systems providing email services queue messages as part of their operations. Hypernodes are configured to process a capped […]

Read more

Release 5677: SMTPD limits on low disk space

In this release we have tuned a couple of postfix configurations to safeguard Hypernodes from excessive e-mail volumes. What may affect users is that when the root disk has free space less than 15MB, SMTPD would not accept new requests. We have also adjusted the active queue size in proportion to the enforced mail limits, […]

Read more