Keep Your Site Secure
Ensuring that yours and your customer’s data is secure is crucial. If you are an eCommerce store you need to invest in your security in order to safeguard your business and your customer data.
What do we suggest?
Invest in a Software Firewall
We’re seeing a large increase in IP related attacks such as cross-site forgery, cross-site-scripting (XSS), file inclusion, and SQL injection, amongst others.
So we advise all stores to seriously consider adding a Web Application Firewall (WAF) to offer protection against these attacks. WAF creates a shield between your site and the Internet; this shield can help mitigate many common attacks.
Both CloudFlare and Securi offer great solutions that you can purchase and manage yourself.
Ensure you have Malware and Hacking Prevention
Big Eye Deers work closely with Sucuri to give complete peace of mind by scanning all of our websites, monitoring for hacks and for preventing future attacks.
The cost is £195+VAT per year, per store, Includes weekly monitoring and fixes if required.
Install Two-factor Authentication
Installation of 2 Factor Authentication module for Magento admin panel to ensure your admin areas are more secure from brute force attacks.
Cost is £67+VAT per year per store.
Secure your Magento CMS
There is a XSS (Cross-site scripting) vulnerability in Magento 1s WYSIWYG Tiny MCE. The problem is code can be executed and isn’t validated before running, this could be an issue for your data.
This is something you can fix yourself by disabling the WYSIWYG editor in the backend of magento.
Backend > System > Configuration > Content Management
And change
“Enable WYSIWYG editor” to “Disabled”
This will make it slightly more difficult to edit blocks and pages as there isn’t an easy editor, however, the functionality of editing text and images is still there, it just doesn’t look as aesthetically pleasing.
Are you at risk, If you don’t safeguard your security?
Yes and no. At Big Eye Deers, we’ve taken proactive new steps to ensure our customer’s data is protected and secure. Whilst these security steps are optional, we highly recommend the options above as sophisticated data breaches are becoming more widespread across eCommerce stores.
Keeping yours and your customer’s data secure as possible is a commitment that needs to be considered a priority.
Need support on your current eCommerce store? Or looking for an agency to bring your project brief to life? Get in touch today to see how we can help your business.
Adobe Commerce (Magento)
Formerly known as Magento, Adobe Commerce is built for complex catalogues, integrations, and long term growth. We design and develop stable, scalable stores that support demanding eCommerce requirements, including multi-store setups, complex pricing, and Hyva based performance improvements.
Bespoke Build
We design and build custom eCommerce platforms for businesses with complex workflows, integrations, or non standard requirements. Built from scratch around your business needs using Laravel and modern architectures.
Working with brands across the UK from our offices in Cardiff and Exeter, you deal directly with a senior team of designers and developers specialising in Shopify, Magento, WordPress and bespoke eCommerce platforms.
We focus on commercial outcomes. Better conversion rates, strong SEO foundations and eCommerce platforms that continue to improve long after launch.