How We Audited a High-Traffic Magento 2 Enterprise Stack on Google Cloud and Mitigated admin route brute force and session hijacking vulnerabilities
Initial Stack Assessment and Threat Landscape Our engagement began with a comprehensive audit of a high-traffic Magento 2 Enterprise Edition (now Adobe Commerce) stack deployed on Google Cloud Platform (GCP). The primary concerns were the increasing frequency of brute-force attempts against the admin interface and suspected session hijacking incidents, leading to unauthorized access and potential […]