Welcome to the 21st edition of MageNews. 🎃
Being the new editor of Atwix’s monthly news digest — MageNews — is a great honor and responsibility. My hope is to build on the practical value my predecessor delivered. Our goal remains the same — to monitor and surface key drivers and highlights taking place in our incredible Magento ecosystem. We look to provide MageNews in an easy to read format. Ultimately, we want to further community knowledge and engagement by helping inform developers, merchants, and partners across the Magento world.
– Alex Lunkov
- [Merchant] No ordinary moment
- [Merchant] IKEA’s [not only] e-comm challenge
- [Merchant] Will you deliver [in time]?
- [Merchant] Get ready for new
- [Security] Massive Magento 1 attack
- [Security] Enhanced Security Scan Tool
- [Security] Carding attack – Magento 2.3
- [Community] Magento Masters is now Magento Commerce Champions
- [Community] Adobe Tech Blog
- [Community] New Product Recommendations type is coming
- [Community] Interview with Magento Community Engineering Maintainer
- [Community] Mental health day 2020
- [Community] Understanding ADA Compliance
- [Community] Get ready to meet the community – MageConf 2020
- [Technical] Magento 2.3.x support is extended
- [Technical] Magento B2B – Order Approval flows
- [Technical] Magento 2 extension for Imgix
- [Technical] Working with Docker on Windows 10
- Upcoming events
- Want more?
No ordinary moment
For those like us in e-commerce, the holiday season is now well underway. Add to the normal seasonal sprint a global pandemic that continues to upend life and business as we know it. We will not only get through it all. We will help each other, study and learn, and adapt and innovate…like we always do.
IKEA’s [not only] e-comm challenge
IKEA is struggling to adapt to the new reality, when e-commerce is the main channel. Traditionally, the company was relying on physical store experiences — customers were even awarded to visit stores offline and ikea.com was a secondary channel. The COVID-19 pandemic changed that. Now, as physical experiences should be replaced with e-commerce ones, this becomes a challenge — IKEA is facing difficulties in processing online orders as well as in securing curbside pickup slots and uncertainty about when or if home delivery orders would arrive.
Will you deliver [in time]?
Companies are heavily investing in their e-commerce and the most conservative estimates of e-commerce growth in the US are around 18%, in some cases 25% and up to 35% this year.
However, FedEx, for example, expects from 5 to 8% delivery volumes growth this year, which leaves a valid concern about holiday season delivery capacity — when we have a huge number of orders and customers expect them to be delivered in time.
Moreover, Black Friday [and other holidays’] doorbusters are not gone, but replaced by digital equivalents. We already saw this during the launch of next-gen consoles, and retailers have to figure out how to deal with these kinds of situations.
During the holiday season this year it is not only important to beat the sales goals, but also to think long term and make sure you deliver on all of your customers’ expectations and your relationships with them are not messed up for the future.
We recommend retailers to think about the following advice:
– Start the holiday sales early and provide “best price guarantee”, so customers will not be wait for Black Friday or Cyber Monday to get the best deals and your delivery will not be overloaded;
– Manage customer expectations — provide realistic delivery dates for the holiday season;
– Make sure to meet all obligations to sustain better long-term relationships.
– [ModernRetail] E-commerce companies are bracing for more shipping delays over the holidays
– [Yotpo] 10 Black Friday Strategies to Use Right Now
– [Atwix] Prepare Your Online Store for Holiday Season 2020
– [CSA] The holidays are coming early – is your enterprise ready?
Get ready for new
As any industry [and not only], e-commerce, is benefiting from diversity. Walmart’s e-commerce was a great threat for Amazon over the last couple of years, but even more now. Walmart’s online sales grew in the second quarter of 2020 by 97%, compared to the same period last year, and with the launch of Walmart Plus the situation on the market may be changed even more significantly and not in Amazon’s favor. The service offers subscribers in-store and online benefits, such as unlimited free delivery and fuel discounts from selected gas stations.
As a merchant, you should be ready to shift your attention to other, different marketplaces.
Massive Magento 1 attack
Starting on Friday, September 11th and following into the weekend and following week, 2806 Magento 1 stores were hacked, which is 3% of total install base.
UPDATE Nearly 2000 Magento stores got hacked over the weekend, which is – by far – the largest automated campaign to date. Malware loader: mcdnn[.]net. Exfil: imags[.]pwhttps://t.co/7wI94drIfw pic.twitter.com/VK8EqSPtFI— Sansec (@sansecio) September 14, 2020
The Sansec, early breach detection system, detected 1904 distinct Magento stores with a unique keylogger (skimmer) on the checkout page.
The massive and automated hacking of several thousands of Magento 1 stores in September 2020, got code name “Cardbleed” by Sansec to differentiate with other campaigns.
This is one of the biggest credit card data breaches since a while AFAIR.
We would like to remind that the main trigger for this kind of attacks to target your store is outdated software, such as Magento 1. We strongly recommend updating as soon as possible. Atwix provides Express Packages services for its clients, to migrate to Magento 2 with minimum time and cost needed.
– [Sansec] Cardbleed: a massive Magento1 hack
Enhanced Security Scan Tool
At the same time when Magento 1 is facing major security challenges, Adobe is investing heavily in Magento 2 security.
Adobe and Sansec came together to introduce a new enhanced security scan tool.
When the average cost of a data breach is nearly $4 million, it pays to plan ahead. See what the Magento Security Scan tool can do to thwart digital skimming. And the best part? It's free. https://t.co/3qQim5d5DN— Magento Commerce (@magento) September 18, 2020
Merchants can now get access to 17,000 security tests to help identify potential malware on their webstores.
Carding attack – Magento 2.3
Carding (credit card stuffing or card verification) — is a web security threat in which attackers use multiple, parallel attempts to authorize stolen credit card credentials on the store. The objective of carding is to identify which card numbers or details can be used to perform purchases. Also, as a side result, the store is underperforming during the attack.
Merchants using Magento 2.3.x and Braintree are facing continuous carding attacks. This thread should help you design the solution. You should also reach out to SI, in case any help is needed.
Magento Masters is now Magento Commerce Champions
Magento Masters program is evolving and for good. It should be now possible to submit an application and it seems like the process going to be more transparent. We look forward to the application announcement and more details.
The #MagentoMasters program is evolving into the Magento Commerce Champions program! Stay tuned for application details. #MagentoCommerceChamps #AdobeDevelopers #DevExchange pic.twitter.com/KLYxQBp34o— Magento Commerce (@magento) September 28, 2020
In the past, there were many concerns about the transparency of the program.
Adobe Tech Blog
Adobe Tech Blog on Medium is a resource providing information for all kinds of developers and other professionals working with Adobe apps. Make sure to explore it.
New Product Recommendations type is coming
Product Recommendations powered by Adobe Sensei is a huge deal, as this solution provides AI product recommendations for Magento Commerce customers for free.
Now, Adobe is testing new – visual based – recommendations.
We are testing a new type of @AdobeSensei AI for @magento Product Recommendations. Visual AI will find and recommend products from the catalog that are most visually similar to a product on PDP.— Misha Kotov (@mish_capish) September 9, 2020
Currently in Beta
DMs open to work with SIs/merchantshttps://t.co/hQsm7KirEc
The visual similarity recommendation type suggests similar-looking products. This recommendation type is most useful where images and visual aspects of the products are important parts of the shopping experience, like fashion and apparel.
Interview with Magento Community Engineering Maintainer
Atwix is an active contributor to Magento. Now we decided to get the community closer with its heroes — we started with Magento Community Maintainers. Meet the interview with Vlad Veselov and learn what he got to share.
Vlad’s expertise and attitude are motivating to the entire community. He is energetic and his thought process is well-structured. The combination of these qualities multiplied by his diverse projects expertise results in high-quality work.
Mental health day 2020
October 10th, 2020 was claimed as an international mental health day. But it’s not about one day, it’s about taking care of yourself and others every day. Be kind, speak up, and be well.
The importance of personal mental health has never been stronger.— Karen Baker (@wsakaren) September 28, 2020
Look after you first. As otherwise you can’t be helpful to others.
Take breaks, weekends, vacation time. Switch off.
And don’t beat yourself up. Or feel the need to always look head on.
We will get there.
Understanding ADA Compliance
This year marks the 30th anniversary of the Americans With Disabilities Act (ADA). Adobe issued an article on understanding the importance of ADA compliance for e-commerce.
Your business was built to serve all customers, but was your website? Whether a customer’s disability prevents them from typing, clicking a mouse, or seeing content, this article will help you deliver better user experiences and meet ADA compliance. https://t.co/a9rNPge6YJ— Magento Commerce (@magento) September 14, 2020
Get ready to meet the community – MageCONF 2020
The biggest technical Magento conference in the world is happening on October 24th and prior to this, on October 23rd there will be Contribution Day — 24 Hours of Coding Marathon. Atwix organizes both events and would be glad to see you there. Make sure to register and have a chance to meet your beloved community.
Magento 2.3.x support is extended
Magento 2.3.x release line will be supported for an additional three months — through April 2022. Support for PHP 7.3 ends in December 2021, Adobe will be introducing PHP 7.4 compatibility in Magento Commerce and Magento Open Source 2.3.7 in May 2021.
For compliance reasons, all merchants should upgrade to PHP 7.4 before December 2021 — even those still using Magento 2.3
Magento B2B – Order Approval flows
In order to accelerate its B2B roadmap, Adobe has agreed to acquire Accorin’s order approval technology, which allowed Magento B2B to add order approval in Magento B2B 2.4.0.
Magento 2 extension for Imgix
Imgix is an on-demand service that takes your existing static images and turns them into dynamic, responsive images — the service allows you to optimize your images for different devices. For example, a low-resolution image will be delivered to the devices with 720p screens and a high-resolution image will only be delivered to Retina laptops. That results in better overall performance, as the UX is optimized for each and every device.
Working with Docker on Windows 10
Atwix CTO Yaroslav is sharing his experience working with Docker on Windows 10.
Make sure to be the first for our November MageNews digest – subscribe to our blog.
See you in a month!