One of the best e-commerce platforms available, Magento, has come under fire after it was revealed that around 87% of small and medium-sized businesses using it are at a high risk of being victims of cyber attacks.
The research was done by an English cyber security firm who analysed over 9 million websites worldwide.
What exactly is Magento?
If you’re not familiar with it, Magento 1 and Magento 2 are sibling platforms that help e-commerce business owners with a shopping cart system so that their customers can make direct purchases on their e-shops. The beauty of Magento is that it has plenty of options to customise the look, content and even the way the online store works.
However, Magento provides much more than a shopping cart experience. The platforms have other valuable tools such as catalogue management, marketing options and even SEO management.
Due to all of these characteristics of the eCommerce giant, it’s no secret why Magento has such a large user base.
The Potential Risk Magento Users Have
With a high profile company that provides services on the web comes a lot of unwanted attention from cyber criminals. Some of the risks Magento users are exposed to include data, credit and debit card theft, breaches that lead to access of admin accounts and erroneous use of company data.
Most of the companies that were proven to be at risk were from the United States, being at 43% of risk out of the total number of websites that were surveyed. This was followed by European websites, that were at a risk of 28%.
The biggest risk that was found to be present in the websites surveyed was credit and debit card harvesting malware, which stole user’s personal information to be either used or sold on the dark web.
Mitigating the Risk of Being a Victim of Magento-targeted Cyber Crime
Although the numbers of Magento users at risk is quite alarming, most of them were only at risk due to issues that were easy to fix and manageable short term. In the majority of cases, the users only found themselves at risk when they did not run the routine Magento 1 and Magento 2 updates, which allowed for easy entry of new malware.
So, does this mean you should stop using Magento to stop the risk? Absolutely not. All software will always have some sort of security breaches because cyber criminals will never cease to attempt new ways of creating malware that will give them access to the information that is so valuable to you and them.
What you can do instead is to make sure that your updates are current and are done routinely.