Serious Security Flaws Found in Many Online Shops
Research by WhiteHat Security has found that retail websites have an average of 13 serious security vulnerabilities and that half of all retail websites have at least one serious security flaw.
This research highlights one of the reasons why cyber-crime figures remain stubbornly high. The WhiteHat figures show that on average retail websites have 23 unique vulnerabilities which could be exploited by criminals.
To give an idea of how bad the 13 “serious” security vulnerabilities are in most retail websites, if the Open Web Application Security Project (Owasp) were applied to them they would be classified as ‘critical’ or ‘high risk’. Owasp is a trusted online community for resources that can be used to improved web application security.
The findings of WhiteHat Security are unfortunately no surprise and are backed up by research from other organisations. Dutch developer Willem de Groot, for example, have uncovered shocking evidence that nearly 6,000 online retailer websites contain code (which is unknown to the website administrators) that has been designed to steal credit card details.
De Groot has also found that there has been a shocking 69% increase in credit card skimming since November 2015.
Key Logging Attacks.
What Does This Mean For Your Business?
This means that businesses could face an uphill struggle in making sure that their online shops are safe and secure, and therefore action needs to be taken as soon as possible.
Credit card skimming risks could be nipped in the bud if businesses with online shops would upgrade their software regularly. It is also important for businesses to maintain vigilance and to scan their own websites for Owasp‘s top 10 most critical web application security risks. Maintaining a web application firewall and applying patches immediately are also ways that businesses can reduce the risk.