New

MageFence

Keep your online store safe from hackers, malware and other digital threats! Protect what you have worked hard to create with MageFence - complete Magento® security module. MageFence offers a number of features that act as a surveillance system, a security alarm or a hack-proof lock for your online store and allow you to be in total control.


Protect your business from brute-force attacks, data sniffing and unauthorized logins. By purchasing MageFence security module you will get Two-Step Verification plugin for FREE! Get a complete security package for your store!
 

* Required Fields

Availability: In stock

$159.00
View Demo Tutorial

Key Features

Scan and protect your website from vulnerabilities

Key Features

Scan your website for malware

Scan your system for malware and check if your website has already been hacked. Make sure your website is free from the critical issues such as Credit Card Hijack, Guruincsite malware, Ransomware virus or any kind of malicious code.

Creating reference point for future scans

Powerful scanning feature scans your system on regular basis and detects any changes in your files. See the list of all changed and new files so you can pinpoint the changes that can be result of a security breach.

Check .htaccess files

Missing .htaccess files can lead to server errors. MageFence checks if all .htaccess files are in place and replaces missing ones with the default version.

Admin URL

Default Admin Panel location is an easy target for brute force attacks, so it is recommended to change the Admin Panel URL to custom one. Another point of entry is the Magento Connect Manager. MageFence allows you to easily change both URLs, without affecting functionality.

Unauthorized Admin Users

MageFence scans the database and detects suspicious and potentially malicious admin accounts, so you can take action before any damage is done.

Login Security

- Lock out IP address after a defined number of failed login attempt is exceeded.

- Lock out anyone who tries to log in using the wrong user name immediately.

- Add your IP address to the “white list” so you don't accidentally get locked out.

- Get notification every time an admin user logs in.

Magento Patches

Making sure your system is fully patched and up-to-date is crucial for the security. This feature enables you to get deep insight into the security status of your Magento store.

  • Scan for necessary patches according to your version of Magento and check which ones are missing (Magento 1.7 and up)
  • MageFence scans your system internally as opposed to other tools available and verifies patches installation with 100% certainty.
  • This extension connects to our server, which ensures you will always be notified of the latest security trends and updates.
  • Scan your Magento® system from malware

    Scanning Magento for malware

    Hacker attacks are often automated and target very large number of websites, not just the big ones, but primarily those with security flaws. If you are not taking serious measures to protect the security of your website, it’s like leaving the door wide open, the question is not IF your website will be infected with malware, but WHEN. In fact, your website might have already been hacked and you might not even be aware of it. MageFence runs Magento health check thorough scan of your system, detecting malware and alerting you immediately, so you can take action before sensitive data of your customers become compromised or your website gets blacklisted by Google.

  • Security scan files of Magento

    Scanning for compromised files

    Sometimes there are no visual signs of malware infection, and the only way to check if your website is in danger is to look for new or modified files. The scan feature checks your Magento® system files and doesn't let potentially unwanted changes slip under the radar. If the files have been modified, MageFence will give you a complete list of changed and new files so you can confirm the changes you have made yourself and pinpoint the files that are modified as a result of possible malware infection. You can schedule when MageFence will initiate the scan, and scanning frequency, so it doesn't interfere with optimal performance of your website.

  • Block hackers in Magento

    Blocking brute force attacks

    MageFence login protection protects the weakest points of your website: Admin Panel and Magento Connect Manager. This plugin secure admin login and allows you to easily change Admin Panel URL and Magento® Connect Manager URL, which makes your website safe without affecting Magento® Connect functionality. It is a good way to prevent anyone from hacking into your Magento® backend by trying to guess user name and password. MageFence also blocks brute force attacks by locking out anyone who exceeds the specified number of failed login attempts. This unique admin security extension also gives you the option to immediately lock out anyone who tries to log in with wrong user name.

  • Magento security patches

    Keeping your protection up to date

    MageFence helps your e-commerce store fight the ever-changing security challenges. New issues arise constantly and it is necessary to keep up with the security measures. That is why you should always install all the patches that fix Magento's critical vulnerabilities. MageFence checks if the latest security patches have been applied to your system and warns you about the missing ones. Our security team is always on top of the latest security trends. We wanted to make sure that our extension is future-proof, so MageFence connects to our server, which allows you to receive updates considering security measures.

Details

Ending up on search engines’ blacklist and losing the trust of your customers over a single security incident can be devastating to your business. MageFence is a unique, well-rounded security module for Magento® that keeps your website safe from the most common security threats. It acts as an additional layer of protection around your system, blocking brute force attacks and other hack attempts. It also scans your website internally on regular basis and notifies you about any potentially unwanted changes. MageFence offers variety of features that help you keep your website protection up-to-date, end implement the best security practices.

SECURITY AUDIT OF YOU MAGENTO®

Magefence performs a Magento security audit of your website looking for actual security issues and malware infections, not only vulnerabilities, which is the case with majority of Magento® health checks currently available. It also adds an additional layer of security and doesn't let a single change slip under the radar. The Checklist feature allows you to easily find out if your website has been hacked, which Magento security patches are not installed, are there any changed files or unauthorized users with admin privileges.

SCAN YOUR WEBSITE FOR MALWARE

Hacker attacks target very large number of websites. If you are not taking serious measures or have a security plan, it’s like leaving the door wide open, the question is not IF your website will be infected, but WHEN. In fact, your website can be hacked and you might not even be aware of it. MageFence security plugin runs a thorough scan of your system, detecting malware and alerting you immediately, so you can take action before sensitive data of your customers become compromised or your website gets blacklisted by Google.

SCANNING FOR COMPROMISED FILES

Sometimes there are no visual signs of malware infection, and the only way to check if your store is in danger is to look for new or modified files. The scan feature checks your Magento system files and doesn't let potentially unwanted changes go unnoticed. MageFence will give you a complete list of changed and new files so you can confirm the changes you have made yourself and pinpoint the files that are modified as a result of possible malware infection. You can schedule when MageFence will initiate the scan, and scanning frequency, so it doesn't interfere with optimal performance of your website.

KEEPING YOUR PROTECTION UP TO DATE

MageFence helps your e-commerce store fight the ever-changing security challenges. The crucial step is installing all the patches that fix Magento's critical vulnerabilities. MageFence checks if the latest security patches have been applied to your system and warns you about the missing ones. We wanted to make sure that our extension is future-proof, so MageFence connects to our server, which allows you to receive updates considering safety measures.

PROTECT YOUR BUSINESS FROM BRUTE-FORCE ATTACKS

Make it impossible for hackers to break into your backend, even if they somehow get hold of your credentials. Add another security layer with Two-Step Verification plugin that comes FREE with MageFence Security module.

BAN UNWANTED VISITORS FROM ACCESSING YOUR WEBSITE

Add IP addresses to the Blacklist and block unwanted visitors from accessing your website. Great feature for blocking spammers, bots, dishonest customers or anyone you would like to keep away from your website.


FEATURES:

Detect:

  • Magento® security audit: Scan your system for malware and check if your website has already been hacked
  • Scan the integrity of your website system files and detect potentially unwanted changes that can be result of malware infection
  • Schedule time and frequency of the scan so it doesn't interfere with your website's performance.
  • Detect admin users created without authorization and prevent hackers from harming your website by creating fake administrator accounts
  • Detect missing .htaccess files and restore them with default files

Protect:

  • Lock out IP address after too many failed login attempts - you can set the number of attempts allowed and the amount of time IP address is locked out
  • Lock out anyone who tries to log in using wrong user name immediately.
  • Send email alerts about suspicious activities - changed files, brute force attacks and unauthorized users.
  • Optionally send an email notification every time admin user logs in
  • Use IP Blacklist feature to block unwanted visitors from your website through .htaccess file

Enforce:

  • Check if all Magento® security patches are applied and see which patches are missing
  • Change your Admin Panel URL to the custom one, to make your admin panel location almost impossible to guess.
  • Change the Magento® Connect Manager URL to protect access to your website without affecting Magento® Connect functionality.

SYSTEM REQUIREMENTS:

  • Compatible with Magento® CE version 1.7.x, 1.8.x, and 1.9.x
  • This extension requires Cron to be set up and working properly
  • The same as Magento® Enterprise, this software requires ionCube loader to be installed.

Reviews

Very good security moduleby linda_b
Rating
Excellent security extension, with a surprising number of great features. Works as described!
Amazing support from these guys, respon...More(Posted on 8/8/2016)
Excellent security extension, with a surprising number of great features. Works as described!
Amazing support from these guys, responded to all of our questions very quickly!(Posted on 8/8/2016)Less
Just like a surveillance for your online store.by annataylor
Rating
This is the best security extension available at the moment!
It really does act as a surveillance system and it notifies me about eve...More(Posted on 6/16/2016)
This is the best security extension available at the moment!
It really does act as a surveillance system and it notifies me about every change that happens on the website, and every time anyone logs into the admin panel.
Also thanks to the development team that helped me install it and configure it very quickly.(Posted on 6/16/2016)Less
Finally a real security module.by marcwales
Rating
Great module to monitor file change and admin logs. Started to get a lot of index.php/admin attacks in my server logs and with this module n...More(Posted on 3/15/2016)
Great module to monitor file change and admin logs. Started to get a lot of index.php/admin attacks in my server logs and with this module no need to go look true 13000 lines. Fast answer of the team to help for the configuration. I recommend this module if you need security.(Posted on 3/15/2016)Less
Very very good extension - must have!by Murray_S
Rating
Few months ago my store was hacked by inserting some script that was sending spam emails from my account. I didn't even know I was hacked un...More(Posted on 3/3/2016)
Few months ago my store was hacked by inserting some script that was sending spam emails from my account. I didn't even know I was hacked until hosting company noticed unusual activity from my account going for a week! They shut down my site immediately and I needed two days to restore some previous backup loosing hundreds of dollars in sales. I looked for other security extensions but most of them are related to securing admin login with additional layer (which is good) but none of them are actually dealing with files except this extension. After two weeks I can say I am very satisfied. I get notification by email even if I change one image on site, notification about every login or every locked IP address.(Posted on 3/3/2016)Less
Excellent extension and great support as well.by Brian305
Rating
This extension is amazing and I dare to say that there's nothing like it currently available. It has many useful features for managing secur...More(Posted on 1/26/2016)
This extension is amazing and I dare to say that there's nothing like it currently available. It has many useful features for managing security of Magento websites.
The support is also very fast, and responded to all of our questions very quickly.(Posted on 1/26/2016)Less