HTTPS is one of the simplest security measures you can implement and is often the first step towards a more secure website. However, as we discovered when we analysed over 900 Swedish online stores, HTTPS is often ignored. To provide your site’s visitors a secure connection, follow our HTTPS guide and learn how to enable forced HTTPS and HSTS.
Online retail has been around since the early days of the internet and has grown dramatically over the last two decades. To find out whether e-commerce retailers are aware of security risks, we have looked into the HTTPS configurations of 915 Swedish online stores. The results show that it is high time for e-commerce to catch up with security best practices.
The first step of running an online store is simple: do not. In the majority of cases, hosting the platform is an unnecessary headache and opting for an e-commerce-as-a-service solution can be a much better alternative. However, if you have taken the plunge and are hosting your e-commerce site yourself using one of the more popular CMS solutions, keeping your online store secure is a top priority. Being aware of the most common security mistakes in e-commerce can help you identify and prevent security issues.
In e-commerce, there is no one solution that fits every online store perfectly. When it comes to picking a platform for your online store, there are many aspects of your business that need to be taken into consideration before you can make an informed decision. In this article, we have gathered some key points that can help you decide on a platform that suits you best.
Every year, consumers look forward to Black Friday, but unfortunately, so do hackers. Black Friday is “scam central” and while most of the attacks in the past targeted consumers (like the Target data breach in 2013), retailers need to be prepared. An attack on one of the year’s most busy days can have serious consequences for e-commerce merchants, which is why organisations like the Retail Cyber Intelligence Center are offering members threat briefings and advice before the holiday season.
If you follow our blog, you might have already seen an announcement introducing our updated core service with a new crawler. More reliable, more thorough, more deterministic, and with better coverage – sounds great, but what does it all mean? Find out how our engineers, who aim to build the world’s best and most thorough security scanner, have brought to life a new crawler that gives you even better results and helps you stay safe.
The Detectify Crowdsource platform allows security researchers to submit newly discovered exploits and incorporate them into Detectify’s automated security service. At the heart of the initiative is the community of skilled web security experts from across the globe. We have talked to our community manager Kristian Bremberg about his background, the art of building communities, and the power of the crowd.
We have strengthened our security team with a crowdsourced bug bounty program. The initiative, known as Detectify Crowdsource, allows us to bring in independent security researchers from all over the world. They will help us ensure that Detectify remains the most up-to-date and thorough security service for web applications.