How to Protect your Online Shop: 11 Crucial Steps | Cardinity

Transcript

1. CRUCIAL STEPS How to Protect Your Online Shop: 11

2. Get a SSL Certificate SSL (Secure Sockets Layer) is a

   standard technology that keeps all the sensitive information sent between you and your customer encrypted and protected from fraudsters. The address of an SSL-secured website begins with https rather than http. When customers see a lock icon on the address bar, they recognize your website as secure and reliable.

3. Comply with PCI DSS Every online merchant and every payment

   service provider must comply with Payment Card Industry Data Security Standard (PCI DSS). In brief, PCI DSS is a compulsory set of requirements that you are supposed to meet in order to reduce the risk of any criminal activity related to storing and processing card data.

4. Activate 3D Secure 3D Secure protects buyers against unauthorized card

   use and significantly reduces online fraud. Cardinity activates 3D Secure tool for every client free of charge. 3D Secure is an additional layer of security. It is an authentication window marked with MasterCard SecureCode or Verified by Visa logos in which a customer has to enter a personal security code.

5. Verify CVV/CVC Request your customers to type their CVV (Card

   Verification Value) or CVC (Card Verification Code) code (a 3-digit number located on the back of your credit or debit card) which serves as the card’s security code. Your customer should provide this number in order to verify that he/she actually has the physical card.

6. Identify Signs of Fraud Some common signs of fraud: Make

   sure that the email address provided by a customer exists. Fraudsters usually use email addresses which have no meaning. Fraudsters tend to fill in their own address in the shipping field and the address of the legitimate cardholder in the billing field. In order to stay anonymous, fraudsters usually use postal boxes for their orders. Unusually high amount of an order can be a signal of a fraudulent activity. Similarly, a very small order should attract your attention if it is followed by a sequence of large orders. Pay special attention to the transactions conducted with the same payment card but different shipping addresses and vice versa.

7. Apply Blacklisting In case you have already faced hacker attacks

   or fraudulent activities, you can blacklist a particular untrustworthy customer and his IP address, and he will never be able to purchase in your online shop again. You can keep a record of the information about suspicious customers and blacklist them not only by IP address but also by e-mail address, credit card number, country or city.

8. Put Up Firewalls Setting up a firewall will prevent cyber

   attacks from happening in your network. A firewall monitors traffic that comes to your server. It warns you in case of any suspicious activity and blocks malicious attacks. Remember to properly configure a firewall in order to permit legitimate users to access your network.

9. Do NOT Store Cardholders’ Data Make sure that after a

   successful payment authorization, you do not store any private cardholder data, such as CVV codes, card expiration dates, etc.

10. Implement Password Policy It won’t take long for hackers to

    get a simple 5-character password. That is why you should encourage your customers to use stronger passwords for logging in their accounts in your e-shop. *********** USER_ID Develop the password policy, so that the passwords could not be too simple or too short.

11. Update Regularly In order to keep your online shop protected,

    update your system and software regularly. Don’t forget that your SSL certificate also needs to be renewed from time to time. In addition, get rid of all the outdated and unnecessary plugins. The latest versions of software usually have all the bugs fixed.

12. Choose a Reliable Payment Service Provider If you choose a

    payment service provider like Cardinity that complies with PCI DSS, credit and debit card payments carried out on your e-commerce website will become much safer.We will safeguard you and your customers as well as take care of your transactions.

13. Contact us: UAB Click2Sell Sauletekio ave. 15 Company code: 300110581

    VAT code: LT100005028414 Phone: +44 2035 144 748 [email protected] www.cardinity.com