20181026.1 – Added Magecart zero day extensions checks

Magecart zero day attacks Recently it was brought to light by security researcher Willem de Groot that attackers are making use of unpublished security flaws in about two dozen Magento extensions. The vulnerabilities in these extensions allow the attackers to gain full control over the targeted websites via Remote Code Execution (RCE). Added checks The […]

Read more

20180925.1 – Updated CC hijack and cryptojacking checks and updated style

Update Credit Card Hijack check Recently MagentoCore and MageCart have been getting some traction as Magento specific malware to skim credit card details. We’ve updated our signatures so we’re able to detect shops infected with this malware. Update Cryptojacking check Recently there were some updates to cryptojacker signatures. We’ve updated our database to make sure […]

Read more

[MageReport] Release 20180726.1 – Updated Creditcard Hijack check

Updated Creditcard Hijack check We have updated the Creditcard Hijack check to identify several different instances of newly discovered creditcard skimming malware. Other Several minor UI improvements.

Read more

[MageReport] Release 20180719.1 – Updated checks and new look & feel

Updated Brute Force Attacks check We have expanded the Brute Force Attacks check to scan additional paths for publicly available admin login pages. Please refer to our updated article for more information on how to protect your Magento installation from brute-force attacks. Updated Creditcard Hijack check We have updated the Creditcard Hijack check to identify several different […]

Read more

Release 5226: DigitalOcean nodes route outbound port 25 and 587 through dedicated IP, fixed long running processes MageReport check

SMTP traffic on default ports via the non-dedicated IP Recently it came to our attention that in contrast to their normal IPs, DigitalOcean was blocking outbound traffic on ports 25 and 587 on the floating IPs we use to provide the newly introduced dedicated IP feature on Hypernode. This is generally not an issue since […]

Read more

Release 5041: Automated patch info updates fixed on tools.hypernode.com

As part of the hypernode-magerun Magento plugin bundle there is a command that can list relevant patches for a Magento 1 installation and show whether or not they have been installed. The data of available patches used by this command is retrieved from tools.hypernode.com and originates from this excellent spreadsheet maintained by John Knowles. The […]

Read more

Release 2192: No more PHP memory limits, blocking certain bots entirely

No more memory limits on PHP processes A while ago, we introduced a global cgroup limit on memory. This is a safeguard that makes sure the app user does not use more memory than is healthy for the Hypernode. The total of memory used by processes owned by the app now cannot exceed a certain […]

Read more