Foregenix, which is renowned globally for its work on payment security, has been analysing and researching attack trends, with a strong focus on the e-commerce sector.
The company’s cyber security team recently conducted a survey which found that security scans performed on 218,000 Magento websites, which is one of the most popular e-commerce platforms, are missing 86% of critical security patches.
‘Smaller traders at risk’
According to the survey, 2% of websites analysed are also compromised and currently being harvested for their customers’ data.
“The rise in cybercrime threatens to undermine confidence in e-commerce, especially in markets leading the way in online sales in the US and UK, while heavy penalties by card providers put many smaller traders at risk,” says Benjamin Hosack, Co-Founder and Chief Commercial Officer at Foregenix.
“Magento and other e-commerce platforms release regular software updated in response to vulnerabilities. These security patches, if not used, can leave websites highly vulnerable to hacking.”
Brute force attacks
Other research conducted by Foregenix identified a growing global trend for brute force attacks in the first half of the year.
“Online businesses often assume web developers and agencies take care of security. Design agencies are great at producing beautiful, transactional websites that sell, but their expertise on security issues generally isn’t as well developed. Agencies and their clients need to be aware of e-commerce security issues, as even a single breach can be devastating for a small business,” continues Hosack.
He also notes that simple precautions can make a real difference to reducing a company’s risk from criminals and advises consumers to change their default settings on the administration interface and use stronger passwords.
Written by Leah Alger