Invest in a Software Firewall
We’re seeing a large increase in IP related attacks such as cross-site forgery, cross-site-scripting (XSS), file inclusion, and SQL injection, amongst others.
So we advise all stores to seriously consider adding a Web Application Firewall (WAF) to offer protection against these attacks. WAF creates a shield between your site and the Internet; this shield can help mitigate many common attacks.
Ensure you have Malware and Hacking Prevention
Big Eye Deers work closely with Sucuri to give complete peace of mind by scanning all of our websites, monitoring for hacks and for preventing future attacks.
The cost is £195+VAT per year, per store, Includes weekly monitoring and fixes if required.
Install Two-factor Authentication
Installation of 2 Factor Authentication module for Magento admin panel to ensure your admin areas are more secure from brute force attacks.
Cost is £67+VAT per year per store.
Secure your Magento CMS
There is a XSS (Cross-site scripting) vulnerability in Magento 1s WYSIWYG Tiny MCE. The problem is code can be executed and isn’t validated before running, this could be an issue for your data.
This is something you can fix yourself by disabling the WYSIWYG editor in the backend of magento.
Backend > System > Configuration > Content Management
“Enable WYSIWYG editor” to “Disabled”
This will make it slightly more difficult to edit blocks and pages as there isn’t an easy editor, however, the functionality of editing text and images is still there, it just doesn’t look as aesthetically pleasing.
Are you at risk, If you don’t safeguard your security?
Yes and no. At Big Eye Deers, we’ve taken proactive new steps to ensure our customer’s data is protected and secure. Whilst these security steps are optional, we highly recommend the options above as sophisticated data breaches are becoming more widespread across eCommerce stores.
Keeping yours and your customer’s data secure as possible is a commitment that needs to be considered a priority.
Need support on your current eCommerce store? Or looking for an agency to bring your project brief to life? Get in touch today to see how we can help your business.
Magento is the leading solution for eCommerce, and we’re specialists. Magento is easy-to-use, completely customisable and endlessly scalable.
We offer custom web development services for any requirement. Manufacturing from scratch, we deliver a project entirely tailored to your needs.
Working with brands nationally from our offices in Cardiff and Cornwall, our tenacious team of designers and developers deliver sophisticated results every time.