Security alert module via Telegram

Security alert module via Telegram
search
  • Security alert module via Telegram
  • Security alert module via Telegram
Compatibility

1.7.6 a 9.2

Why did we create this module?

In response to the increase in hacks that change payment methods, we have decided to make this module free for the community.

€0.00,
€0.00 €0.00

Advanced security audit and real-time Telegram alerts. Protect your PrestaShop store by detecting SQL injections or unauthorized changes to payment accounts (IBAN, Stripe, PayPal), employee modifications, access from unknown IPs, and installations of suspicious modules. Intelligent monitoring system using Snapshots that works even if the attacker directly alters the database.

Quantity

Module support

Module without support but you can contact us

Asesor experto

¿Necesitas ayuda de un experto? ¿Hablamos?

RKR Security Alert — Audits and alerts via Telegram

Has your store been hacked, or do you want to prevent it?

Detects critical database alterations directly or through SQL injections that other modules miss. Receive automatic alerts in your Telegram admin group internally, without external configuration.

✓ Compatible with PrestaShop 1.7.6 through 9.2

Advanced Detection Technology (Snapshot)

Unlike most security modules that rely on PrestaShop event hooks (which are not 100% reliable in the face of configuration changes or direct module actions), RKR Security Alert uses a "Fingerprint" (Snapshot)-based approach .

The module internally stores a secure state of your configuration, installed modules, and employees. With each load of the admin panel, it compares the state in record time to detect discrepancies.

Critical advantage: If an attacker alters your payment details (such as changing your IBAN, PayPal, Stripe, or Redsys/Bizum keys) by executing direct SQL code or exploiting another vulnerability, the change will still be detected. Because you don't rely on the PrestaShop interface to trigger the alert, you're protected against invisible manipulations.

What does the module monitor? (Configurable with switches)

  • Changes to Global Configuration: Keys added, modified, or deleted. Highlighted in 🔴 Critical are changes related to payment gateways (IBAN, PayPal, Stripe, API keys...).
  • "Minimal Noise" mode: Filters and silences the rest of the settings to alert you only when sensitive payment method parameters are altered.
  • Module Audit: Notifications about installations, uninstallations, activations or deactivations of extensions.
  • Employee and Admin Control: Detailed alerts on new user registrations, profile modifications (email, status) and staff terminations (highlighting SuperAdmin accounts).
  • IP Access Control: Immediate notification if an employee accesses the Back-Office from an unregistered IP address. The system self-regulates and remembers previously encountered IPs.

* Always active: Daily Heartbeat self-diagnostics and immediate alert in case of an attempt to uninstall the security module itself. Each alert includes the user, IP address, affected store, and history.

Easy Installation and Setup

1. Create the Bot on Telegram:

Talk to @BotFather -> run /newbot -> save your token. Create a Telegram group with your administrators, add the newly created bot, and extract the group's numeric ID (chat_id) using tools like @RawDataBot .

2. Configure the Module:

Upload the .zip package from your Modules tab in PrestaShop. Paste the Token and Chat ID into the settings panel, define your preferences, and click "Send test message." The initial snapshot will override the pre-existing state and only send alerts from the moment of activation.

3. Full automation using Cron Task (Recommended):

Copy the secure URL generated in your module's settings and add it to your hosting's cron job. Running in the background (e.g., every hour), it will continuously audit changes without requiring a user to log into the control panel.

0 9 * * * curl -s " https://TUTIENDA.com/index.php?fc=module&module=securityalert&controller=heartbeat&secret=XXXX " > /dev/null

Technical Considerations

  • Crash protection: The module never breaks the back-office load. If the Telegram API or a query fails, it is safely saved in the debug logs to avoid disrupting the store's sales flow.
  • Intelligent performance management: Applies checks with controlled minimum wait intervals (default 60 seconds) avoiding overloading your server's database.
  • Proxy Networks / Cloudflare: Make sure your server's reverse proxy module is properly configured to capture the employee's real IP address instead of the content delivery network (CDN) IP address.
Cookie consent