Keep Your Site Secure

Ensuring that yours and your customer’s data is secure is crucial. If you are an eCommerce store you need to invest in your security in order to safeguard your business and your customer data.

What do we suggest?

Invest in a Software Firewall

We’re seeing a large increase in IP related attacks such as cross-site forgery, cross-site-scripting (XSS), file inclusion, and SQL injection, amongst others.

So we advise all stores to seriously consider adding a Web Application Firewall (WAF) to offer protection against these attacks. WAF creates a shield between your site and the Internet; this shield can help mitigate many common attacks.

Both CloudFlare and Securi offer great solutions that you can purchase and manage yourself.

Ensure you have Malware and Hacking Prevention

Big Eye Deers work closely with Sucuri to give complete peace of mind by scanning all of our websites, monitoring for hacks and for preventing future attacks.

The cost is £195+VAT per year, per store, Includes weekly monitoring and fixes if required.

Install Two-factor Authentication

Installation of 2 Factor Authentication module for Magento admin panel to ensure your admin areas are more secure from brute force attacks.

Cost is £67+VAT per year per store.

Secure your Magento CMS

There is a XSS (Cross-site scripting) vulnerability in Magento 1s WYSIWYG Tiny MCE. The problem is code can be executed and isn’t validated before running, this could be an issue for your data.

This is something you can fix yourself by disabling the WYSIWYG editor in the backend of magento.

Backend > System > Configuration > Content Management

And change

“Enable WYSIWYG editor” to “Disabled”

This will make it slightly more difficult to edit blocks and pages as there isn’t an easy editor, however, the functionality of editing text and images is still there, it just doesn’t look as aesthetically pleasing.

Are you at risk, If you don’t safeguard your security?

Yes and no. At Big Eye Deers, we’ve taken proactive new steps to ensure our customer’s data is protected and secure. Whilst these security steps are optional, we highly recommend the options above as sophisticated data breaches are becoming more widespread across eCommerce stores.

Keeping yours and your customer’s data secure as possible is a commitment that needs to be considered a priority.

Need support on your current eCommerce store? Or looking for an agency to bring your project brief to life? Get in touch today to see how we can help your business.