The Latest News and Updates from Adobe Commerce

A lot has happened in the world of Magento from security enhancements and new tool announcements to full brand consolidations (say hello to Adobe Commerce!).

Running you through the latest news and updates from the platform, take a read to find out all you need to know…

Magento Commerce is now Adobe Commerce

We’re fast approaching the three-year anniversary of Adobe’s acquisition of Magento Commerce. Marking the impressive progress of their product, the branding is officially being consolidated from Magento Commerce and Adobe Commerce Cloud to the single brand of Adobe Commerce. However, Magento Open-Source branding and support will not be impacted by this change.

The focus for Adobe Commerce is to help customers across the full commerce journey. The vision remains the same – delivering multi-channel commerce, best-in-class experiences and marketing capabilities to its users. An exciting time to be part of the Adobe ecosystem, their investment in flexibility, scale and security empowers us to overcome eCommerce challenges for the brands we work with. If you want to read more about this announcement, take a look at Magento’s blog.

Latest Adobe Commerce platform updates

Now available: Adobe Commerce 2.4.2-p1 and 2.3.7

The pandemic undoubtedly increased reliance on eCommerce, making it more important than ever for merchants to remain up to date and secure with their solutions. With this in mind, the now available Adobe Commerce 2.4.2-p1 and 2.3.7 bring important security updates to users.

  • Adobe Commerce 2.4.2: Many general security vulnerabilities have been resolved in this update including disabling the copy feature for credit card information. This will help merchants protect against malicious data from the clipboard and send this data to a remote individual.
  • Adobe Commerce 2.3.7: A reminder that PHP 7.3 reaches end of support in December and Adobe Commerce 2.3 reaches end of support in April 2022. Bridging this gap is the new 2.3.7 release which includes support for PHP 7.4 providing merchants with full support of 2.3 until its end of support date.Magento advises that any 2.3 users upgrade directly to 2.4 and PHP 7.4 to help maintain PCI compliance and create the most cost-effective upgrade approach.

As with any security updates, we recommend you speak with your web agency to ensure your site remains secure, compliant and optimised for performance.

Substantial security enhancements

This release also includes over 35 security fixes and platform security improvements that help to close remote code execution and cross-site scripting vulnerabilities. You can visit the Adobe Security Bulletin for more information and discussion around these fixed issues.

Additional security improvements also include:

  • All core cookies now support the SameSite attribute
  • Magento now displays messages that identify potentially harmful content in product and category description fields
  • To help prevent malicious uploads, file system operations across Magento components have been standardised and hardened
  • Core Content Security Policy violations have been resolved

Additional product announcements

Alongside a number of security enhancements, additional features have also been announced including:

  • Egress Filtering: Available for Adobe Commerce only, Egress Filtering has been added for existing Adobe Starter merchants. This security functionality allows or denies network traffic from the store to other destinations with the goal to stop any malware from sending private information to outside entities.
  • Product Recommendations: Expanded product recommendations will be released in the next quarter for those on Adobe Commerce 2.3.7 and beyond. This feature will support complex B2B buying journeys allowing merchants to increase conversion rates and AOV. Merchants will also be able to configure product recommendations so B2B buyers can only see recommendations that reflect the products and pricing in their specific catalogue.
  • Customer Support Data Privacy: Customer Engineering is revising the process that Adobe use to collect consent to access Customer Data for support requests. As part of this new process, only the Primary User within a Magento Customer profile can provide consent. This consent will be centralized in a new section called Privacy Settings within the Magento account. However, Magento has recognised that the Primary User may not always be the user submitting the support ticket. To accommodate this, they’ve developed the ability to allow the necessary individual access to Customer Data for a period of time.

Community contributions

As an open-source platform, the Magento community constantly contributes to the solution.

True to form, team Pinpoint have also been actively contributing. Having discovered some bugs, one of our developers got to work fixing them and submitted three Pull Requests which provide changes to be made to the Magento code base.

We all know how important it is to upgrade to the latest version of Adobe Commerce to get the most value from the platform and maintain a secure eCommerce store. Updates are often deferred to avoid costs. However, this leads to an accumulation of technical debt along with increased security risk which is no good for anyone.

While keeping your environment up to date is key to meeting your business needs, Adobe recognises that these upgrades take planning, time and investment. Many agencies and merchants are looking for ways to streamline this effort.

To make this process a little easier, Adobe have been working on their latest tool which will help to make the upgrade process more transparent, predictable and seamless. The Upgrade Compatibility tool will enable merchants to proactively identify incompatible customisations by analysing customisations and also identifying code that may need updating prior to an upgrade.

Not only will this make the process more simpler but it can also lower the cost of performing regular updates. It’s important to note, however, that this tool is designed to improve the upgrade process but does not reduce the need for regression testing.

Working with you

We’re all about Adobe Commerce. So much so, it’s the only platform we build in. Always keeping in touch with the latest updates and community conversations, we work with numerous businesses to keep their eCommerce stores up to date, secure and optimised for high performance.

If you want to find out more about these latest updates or the Adobe Commerce platform, don’t hesitate to get in touch with our team who will be more than happy to chat.