Similar to PC software or operating systems, online systems also have corresponding security updates. These security updates are also called patches and in the case of Magento they are called "SUPEE patches", which are published on the Magento website with the label "SUPEE-XXXX".
These patches should be applied regularly and promptly to prevent the compromise of the store or the spying of sensitive customer data. Usually, attempts are made to exploit this vulnerability against insecure online stores shortly after it is announced.
Magento security updates and patches should therefore be applied immediately!
Our procedure
We check your store for known security vulnerabilities and create a report. After commissioning us to carry out the maintenance work, your store is brought to our development environment. There the Magento patches are checked, applied and then the functionality of the store system is tested.
After we have successfully performed the maintenance work, we will arrange a maintenance window with you, during which we will import the version from our development environment into your live system.
Current security updates and patches can be found here: Magento – Security Center
Since 2016 we are partner of the leading Magento conference in Europe: Meet Magento Association.