Research

Vulnerability analysis, detection engineering, and mitigation guidance. When threats emerge, we publish actionable research alongside the signatures and rules to defend against them.

March 25, 2026|Ryan MacDonald

Magento PolyShell: Detection, Mitigation, and LMD Signatures

A critical unauthenticated file upload vulnerability in Magento's REST API allows attackers to plant PHP webshells disguised as GIF images. We break down the attack, publish ModSecurity rules, Apache hardening guidance, and four new Linux Malware Detect signatures.

vulnerabilitymagentomodsecuritylmd

Read