1. There are many different
types of threats and vulnerabilities in a E-commerce business. Some
of them are accidental, some are purposeful, and some of them are
due to human error. The most common security threats are an
electronic payments system, e-cash,credit/debit card frauds,
etc.
- Fraud Risk: E-payment has a very huge risk of
fraud. The computing devices use an identity of the person for
authorizing a payment such as passwords and security questions. But
there is a possibility if the passwords and answers to the security
questions are matched, like if someone knows your password and
security answers, he can easily have access to your profile and
have your money.
- Payment Conflicts: There maybe some errors or
technical glitches on a system, and sometime it could result to
payment conflicts. Thats why it is recommended to check our pay
slip after every pay to make sure everything is alright.
- E-Cash threats: It is a digital way which
helps to do online transactions. Examples of which are Google Pay,
Paytm, Phonepe etc. In this we store financial information on the
computer, electronic device or on the internet which is vulnerable
to the hackers. Some of the threats are:- Backdoor attacks, Denial
of Service attacks.
- Credit/ Debit Card Fraud: There are many
scamsters and fraudsters who do Credit card or Debit card scam .
Techniques like Phishing, Skimming, using keyloggers and many
more.
2. Security Controls to
improve the information security level
It is a smart approach to
be aware of the threats that are present online. You should also be
aware of how you can protect yourself from these E-Commerce threats
and prepare for them. Some of the solutions could
be:-
- Use HTTPS: Using HTTPS webiste instead of
plain HTTP website.HTTPS protocols not only protect the sensitive
information users submit, but their user data as well.
- Securing Admin panels and servers: Most
ecommerce platforms come with default passwords that are
ridiculously easy to guess. Using complex password and usernames
and changing them frequently.
- Payment Security: In order to save your
business, you should never store credit card information on your
servers and ensure your payment gateways security is not at risk.
If you fall victim to a security breach, and hackers get their
hands on credit card data.
- Antivirus and Anti-Malware Software: Hackers
can use stolen credit card information to place orders from
anywhere in the world. An antivirus or an anti-fraud software can
help to prevent yourslef from these scams.
- Use Firewalls and Backing up your data: Using
Firewalls and Backing up the data can be very useful if due to any
malfunction or glitch datas are lost.