Security is Not an Add-on.
It's the foundation of everything we build. Meet Sentinel, our proprietary defense framework.
WAF Included
Every plan comes with our basic WAF to block common OWASP attacks.
Free SSL
Auto-renewing Let's Encrypt certificates for every domain and subdomain.
Malware Scanning
Daily filesystem scans to detect webshells and injected code.
When a CVE drops, we publish and patch
Security isn't a badge — it's a response time. When vulnerabilities affecting Magento stores are disclosed, we assess them, patch our platform, and publish plain-English guidance for store owners. Recent examples:
- GhostLock (CVE-2026-43499) — 15-year-old Linux root bug, public exploit
A 97%-reliable root exploit with container escape — why shared-hosting tenants should ask questions this week.
- Bad Epoll (CVE-2026-46242) — unprivileged-to-root via the epoll subsystem
A race condition in the machinery under nginx and PHP-FPM. Kernels 5.10–6.11 affected.
- Januscape (CVE-2026-53359) — KVM guest-to-host escape
A neighbour's VPS can become root on the host under your store — and only the host provider can patch it.
- CVE-2026-12184 & CVE-2026-14355 — PHP DoS flaws in every Magento PHP line
A failed TLS handshake can crash a PHP-FPM pool. Fixed in PHP 8.2.32 / 8.3.32 / 8.4.23 / 8.5.8.
- APSB26-49 — Adobe Commerce & Magento security patches, May 2026
What the critical patches mean and what UK merchants need to do.
- Fragnesia (CVE-2026-46300) — Linux kernel privilege escalation
How a webshell becomes root, and how our platform was patched.
- CVE-2026-45247 — Mirasvit Cache Warmer remote code execution
A popular Magento extension turned attack vector — detection and mitigation.
- CVE-2026-23111 — why shared hosting multiplies kernel exploits
One compromised tenant shouldn't mean every store on the box is exposed.
Security included on every plan
- ✓ Sentinel WAF tuned for Magento attack patterns
- ✓ Daily malware & webshell scanning
- ✓ Off-site backups (daily; 4-hourly on higher tiers)
- ✓ Staging environment for safe changes
- ✓ Auto-renewing SSL on every domain
- ✓ Sansec eComscan partner scanning
- ✓ Proactive patching of stack CVEs
- ✓ 24/7 UK engineers on call