E-Commerce Security

  • erfan

    (@erfanghavaminia)


    4 years, 11 months ago

    Hi,

    Im going to launch an ecommerce wordpress website on a shared hosting system and woocommerce plugin is being used. L4 security tips are applied (like using ssl, ddos mitigation etc)
    Im worry about L7 security issues (OWASP top 10)
    After maintaining core and plugin updates what should I check?
    What security plugin should I use?
    How should I protect my ecommerce from fraud?
    I’ll be grateful to hear your suggestions
    Thanks a lot ????

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    I use WordFence on all of my sites. On e-commmerce sites, I try (try, try, try) to get anyone with store manager or admin access to use two factor authentication.

    As with any store, use a good payment processor. I like Stripe, but the one you choose may depend on your location. Stripe is good at detecting fraudulent transactions, thus blocking those purchases. And, as with any store, reconcile “cash” to your “register” every day, and reconcile what woocommerce shows as the transactions with what appears in payment processor’s site and your bank regularly.

    Thread Starter erfan

    (@erfanghavaminia)

    Thanks
    I didn’t understand this section of your reply:

    On e-commmerce sites, I try (try, try, try) to get anyone with store manager or admin access to use two factor authentication.

    Is it possible to explain it a little bit more?

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    People who have admin or store manager access to your site have access to the credit card stuff, hence to your money. You want their logins to be as secure as possible, so insist on strong passwords and two factor authentication. You can get 2FA through the WordFence or Google Authenticator plugins.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘E-Commerce Security’ is closed to new replies.

Tags