Bleeping Computer

Magento plugin Magmi vulnerable to hijacking admin sessions

A cross-site request forgery (CSRF) vulnerability continues to be present in the Magmi plugin for Magento online stores, despite developers receiving a report from researchers that discovered it.
Ausdroid

How to Safely Upgrade Magento 2 to the Latest Release

Magento 2 upgrade to the latest version helps your store stay secure and high-performing, but some merchants hold back, fearing errors or disruptions. If that is you, you have nothing to worry about.