)
Security is at high priority in the current landscape and the current situation in Europe. We also seen what can happen in recent events. For example with coop and unpatched old platforms.
It is important to make sure that your store covering the most important aspects of security. We have put together short checklist you need to make sure is done in order to secure you eCommerce platform. This is applicable to most platforms, but will be implemented a bit different depending on your tech.
Admin
That someone gets access to your admin is in general a very bad thing. They are able to add all sorts of scripts, get access to data and put your site down.
Use a VPN to ensure network security (with a static IP)
Restrict the admin panel/login by IP.
Activate 2fa on login to admin.
Review if admins are required and what roles they have.
Update platform (open source)
New security-issues are discovered every day. Because of this it is very important to keep your platform up to date. This applies mainly to open source platforms. But even SaaS platforms will have big issues if they are not properly maintained.
Keep your platform up to date
Make sure all patches are applied
CDN
A CDN (content delivery network) is often already implemented in order to ensure quick performance in a larger geographic area and optimize images. It is also highly important to ensure your security.
DDOS protection
Geo block specific countries
Block malicious traffic
Security audit
We also recommend performing a general security audit. As a minimum, use a security scan such as Sansec or similar. We also recommend using a firewall order to limit access to your servers, ports and such.
)
)
)