Important Magento 2.4 Updates To Security & Performance ConnectPOS Content Creator September 21, 2023

Important Magento 2.4 Updates To Security & Performance

Magento 2.4 Updates

Being the major release of our favorite e-commerce platform, Magento 2.4 has many performance and security updates that can better your site in various ways. Magento 2.4 allows you to access the most cutting-edge innovations within the industry and provide the best features for your website.

In this blog, we will review some of the critical Magento 2.4 updates for Magento Commerce that merchants should consider.


Multiple Magento 2.4 updates can effectively enhance user experience while increasing security. Below are some of the key updates for B2B businesses:

  • Approval workflows that benefit both B2B sellers and buyers
  • The flexibility for users to accept purchasing policies regardless of payment method
  • Personalized shipping methods
  • Faster requisition list creation
  • New GraphQL APIs to improve B2B headless capabilities
  • Google reCAPTCHA on the new company request form to reduce the creation of fraudulent accounts

Site-wide Analysis Tool (SWAT)

This is another great feature included in Magento 2.4 updates. In September 2020, Adobe launched automated monthly delivery of Site-Wide Analysis Tool reports to Magento Commerce Cloud users. Currently, The SWAT Portal is fully integrated with the Magento Admin Panel.  Therefore, Commerce Cloud users can have real-time access to the Site-Wide Analysis Tool dashboard that shows:

  • Site performance
  • Site health
  • Functionality
  • Suggestions to fix issues encountered

Enhanced security

While Magento is a safe platform, they’ve still taken the opportunity to boost their protection by closing remote code execution (RCE) and cross-site scripting (XSS) weaknesses. About 30 other security enhancements, 226 GitHub issues have been resolved and more than 100 core code fixes. Plus, Magento has added CAPTCHA to order placement and WEB API endpoints related to the information of payments.

Related articles:   8 Tips To Optimize The Magento Checkout Process

Other security highlights are as follows:

  • Enable obligatory Two-Factor Authentication (2FA) for Admin accounts and optional 2FA for Magento accounts, as well as Multi-Factor Authentication for Cloud SSH access
  • Provide support for security.txt file
  • Enable default disabling of data rendering to prevent JavaScript malware

Agile content creation & enhanced storefront experience

The new Media Gallery allows bulk image operations, duplicate detection, and custom metadata. Magento also reduces the cost and time to market for headless storefronts as they continue to build out PWA Studio components and expand GraphQL coverage for key Magento capabilities, including product reviews, gift options, and rewards.

Magento 2.3.5-p2 Security-Only Patch

Magento 2.4 updates also come with a Security-Only Patch, Magento 2.3.5-p2, to fix some security and performance problems with the last version. It is recommended that users download the most updated version of the program to stay ahead of the curve.

Planning for PHP 7.3 end of support

In December, PHP 7.3 will reach its end of support. To ensure compatibility and compliance for the 2.3 release line, Magento will add support for PHP 7.4 to Magento 2.3.7 release in May. This Magento 2.4 update will bring backward-incompatible changes into 2.3.7 that may affect users’ websites and extensions. To avoid interruptions, all merchants are encouraged to adopt Magento’s latest minor release 2.4.x, which supports PHP 7.4, or update to 2.3.7 once it’s available.

To sum up

That’s all about the key security and performance updates in Magento Commerce 2.4. Let us know your point of view on these Magento 2.4 updates in the comments!

Related articles:   Online shopping is changing with Augmented Reality
Write a comment
Your email address will not be published. Required fields are marked *