Securing Magento 1.x against Malware and Brute Force attacks

Securing Magento

Brute force attacks against Magento stores are unfortunately common, as with any popular web framework.

Fortunately, they are easily countered as they are often lazy attacks from automated scripts or botnets that try to use the default Magento paths to gain entry.

Our support team at ServerGuy can help implement any of the changes below to help protect your store.

How To Protect Your Magento Store securing magento

To help protect Magento store against attacks, do the following:

  • Change the admin path from /admin to something less obvious, this is adjusted in your local.xml file near the bottom
  • Change the variable to adjust this and then clear the Magento cache.
  • Password or IP restrict your downloader using our panel access restrictions or a .htaccess file, you can also move the downloader out of the Magento web root completely when not actively using Magento Connect.
  • Update Magmi, older versions of Magmi are unsecured and can allow remote users to upload files for remote execution.
  • Keep any WordPress installations up to date within your Magento web root, they are another common source of malware.
  • Apply any missing patches for your store, our support can help apply these for you.  Most Magento 1.x patches are critical to the security.

All You Need to Know: Best 5 Magento Security Extensions 

Further securing your Magento admin

If changing the admin path is not sufficient, it is also possible to IP restrict it completely.

Contact ServerGuy for details on how to restrict this on our hosting.

Magento Hosting banner

Enquire now and join 1000+ businesses who have blitzscaled their websites by choosing ServerGuy as their hosting partner.


Latest Magento Tips, Guides, & News

Stay updated with new stuff in the Magento ecosystem including exclusive deals, how-to articles, new modules, and more. 100% Magento Goodness, a promise!

Scroll to Top

We can help you. Right now.

Fast growing merchants depend ServerGuy for high-performance hosting. Experience counts. Let's get started.

Talk to a sales representative

USA / Worldwide




Core Web Vitals Book COver

Is your website ready for Core Web Vitals?

Take this FREE book with you and optimize your store for speed.

Learn all about new Google new ranking factors and get that top ranking.