SecureCommerce - Security & Firewall Solutions for Onlineshops

SecureCommerce as an effective and efficient security solution for online stores

E-Commerce Security / Firewall Protection for

more…

(on request)

Online stores are in the focus of hackers, extortionists and unscrupulous competitors as profitable targets of attack. In addition to attacks on servers, data theft and manipulation of payment or customer data, DDoS attacks are damaging online commerce. These frustrate visitors as well as store employees and cause targeted outages due to high traffic and server load. Without effective protection and suitable defense mechanisms, online stores are an easy target. Victims of the attacks initially notice slow loading times, but can also experience considerable sales deficits due to failed orders, missed new customers or complete store system failures. If the attack is intensified by data theft or sabotage of payment, price or customer data, e-commerce providers lose not only financial reserves but also customer trust, which, depending on the extent of the damage, threatens the existence of the company. SecureCommerce quickly and easily reduces avoidable risks and effectively secures you, your company, your online store and your customers.

Security Check for your onlineshop (free)

Cybersecurity Services

Security-as-a-Service Plans

Do you want to learn which security risks your onlineshop is facing? Reach out to us and we will run our security check for you.

Basic

from €79,- / month

Number of Servers/Cloud: 1
Webshop Firewall:
- Managed Service
Bot Protection:
- Bad Bots Filter
DDoS Shield:
- DDoS Protection
Performance Boost:
- Fast PageLoad (SEO-friendly)
- + Load Saver, Pre-Cache
Malware Protection:
- Malware Protection
24-7 Monitoring:
- Onlineshop, DB Syscheck
Load Balancing:
- (Load Balancing Management)

Pro

€149,- / month

Server/Cloud Instances: 1-2
Webshop Firewall:
- Managed Service
- + Zero-Day-Patching
Bot Protection:
- Bad Bots Filter
DDoS Shield:
- DDoS Protection
Performance Boost:
- Fast PageLoad (SEO-friendly)
- + Load Saver, Pre-Cache
- + High-Performance CDN
Malware Protection:
- Malware Protection
- + Early Risik Recognition
24-7 Monitoring:
- Onlineshop, DB Syscheck
- + NS/DNS Sec
Load Balancing:
- Load Balancing Management
- + Failover

Plus

€249,- / month

Server/Cloud Instances: 1-4
Webshop Firewall:
- Managed Service
- + Zero-Day-Patching
- + AI Extension
Bot Protection:
- Bad Bots Filter
- + AI Defence
DDoS Shield:
- DDoS Protection
- + AI Defence
Performance Boost:
- Fast PageLoad (SEO-friendly)
- + Load Saver, Pre-Cache
- + High-Performance CDN
- + Anycast Geo Optimization
Malware Protection:
- Malware Protection
- + Early Risik Recognition
- + Quarantäne Staging
24-7 Monitoring:
- Onlineshop, DB Syscheck
- + NS/DNS Sec
- + Onlineshop, DB Performance
- + Multi Geo Location
Load Balancing:
- Load Balancing Management
- + Failover
- + Geo Preferences

Enterprise

n.V. / month

Server/Cloud Instances: 5+
Webshop Firewall:
- Managed Service
- + Zero-Day-Patching
- + AI Extension
Bot Protection:
- Bad Bots Filter
- + AI Defence
DDoS Shield:
- DDoS Protection
- + AI Defence
Performance Boost:
- Fast PageLoad (SEO-friendly)
- + Load Saver, Pre-Cache
- + High-Performance CDN
- + Anycast Geo Optimization
Malware Protection:
- Malware Protection
- + Early Risik Recognition
- + Quarantäne Staging
24-7 Monitoring:
- Onlineshop, DB Syscheck
- + NS/DNS Sec
- + Onlineshop, DB Performance
- + Multi Geo Location
Load Balancing:
- Load Balancing Management
- + Failover
- + Geo Preferences

Compatible online shop systems: WooCommerce, Magento, ShopWare, PrestaShop, Oxid eShop, Siquando Webshop, Zencart, OpenCart, OsCommerce.

Cybersecurity risks of e-commerce

Avoidable risks

Security incidents and risks in e-commerce are increasing rapidly. The costs of breaches, consequences and obligations are exacerbated by innovations in data law and data protection. Below you will find the most common security incidents of inadequately protected online stores:

Bad Bots and DDoS attacks

Online store falls victim to a targeted denial-of-service attack by unfair competitors, blackmailers or contract hackers. DDoS attacks usually occur in waves at the beginning, temporarily leading to noticeable performance optimization losses or interruptions and even downtimes of the online offering. The attack is then usually increased in frequency up to permanent interruption for several hours or days.

The e-commerce site is offline for up to several days, orders are not possible or involve cancellations on repeated attempts until sales stop or customers migrate to alternative retailers.
Operator of the online store suffers high financial losses.
The affected online store loses the trust of customers due to the uncontrolled and recurring disruptions, which are usually exploited by attackers aggravating in combination with security deficiencies.
Running advertising campaigns go nowhere and new customers as well as recurring customers are lost.
Not only complete failures but also performance optimization losses affect the buying behavior of the already acquired visitors with buying interest and lead directly to purchase from the competitor.

Data breach

Payment data or addresses of the online store customer base end up in the hands of third parties, are published, resold on the darknet, misused for phishing attacks or offered for repurchase by blackmailers. The most common reasons for data leaks from online stores are configuration errors, cloud and server vulnerabilities, and targeted hacker attacks.

The customers of the online store suffer irreversible damage as a result, for which the online store can be sued individually or multiple times for damages.
In addition to legal consequences and liability, the affected online store loses the trust of customers due to security deficiencies.
Customer confidence due to security flaws.
Duty to report to data protection authorities and publish the incident.
Affected online stores must be taken offline for several days and sales are at a standstill until the root cause determination and the elimination of the data leak are completed.
The process of ex-post analysis is further complicated with inadequate monitoring solution and logging in case of hacker attacks as intruders make high efforts to cover their own tracks and place backdoors for future attacks.
In the event of damage come in addition to penalties for data protection violations, claims for damages still high expenses for forensics and testing for backdoors and rootkits required before the online store may be put back into operation.

Payment processing sabotage

Increasingly, online stores are being attacked at payment processing interfaces. Intruders can redirect customers to phishing sites when paying with Paypal/Klarna/immediate gateways or request payment to different accounts in your name.

This causes irreversible damage to the customers of the online store, for which the online store can be sued individually or multiple times for damages.
In addition to legal consequences and liability, the affected online store loses the trust of customers due to security deficiencies.
Customer confidence due to security flaws.
Duty to report to data protection authorities and publish the incident.
Affected online stores must be taken offline for several days and sales are at a standstill until the root cause determination and the elimination of the data leak are completed.
The process of ex-post analysis is further complicated with inadequate monitoring solution and logging in case of hacker attacks as intruders make high efforts to cover their own tracks and place backdoors for future attacks.
In the event of damage come in addition to penalties for data protection violations, claims for damages still high expenses for forensics and testing for backdoors and rootkits required before the online store may be put back into operation.

Shipping sabotage

Customer places his order and pays for the item while the attacker overwrites the shipping address unnoticed by manipulating the shipping processing interface in the online store. Despite shipping, the goods do not reach the customer.

Anger with customers and loss of confidence due to cybercrime theft unauthorized redirection of the goods.
In addition to legal consequences and liability, the affected online store loses the trust of customers due to security flaws.
Affected online stores must be taken offline for several days and sales are at a standstill until the root cause determination and the elimination of the data leak are completed.
The process of ex-post analysis is further complicated with inadequate monitoring solution and logging during hacker attacks as intruders make high efforts to cover their own tracks and place backdoors for future attacks.

Manipulation of product data and price lists

Particularly in the case of B2C offers with high-value items, targeted attacks on product price data are worthwhile for hackers, whereby orders at incorrect prices usually go undetected. In addition, fraud through vouchers and coupons is popular with attackers and low-risk. Security Solution for online store software: security for

Magento
WooCommerce
Shopware
Oxid
Zencart
OsCommerce

Malware

Since recent incidents on the online shop system Volusion and the continuation at Shopify, e-commerce operators are sensitized. Malware infects and spreads preferably via online stores due to the fast spreading thanks to the high trust of customers. Unfortunately, this very thing leads to the loss of trust for the online store.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_190363058_2	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.

Full protection for your online store

E-Commerce Security / Firewall Protection for

SecureCommerce – the all-round protection and cybersecurity solution for your online store

Firewall

DDoS protection

Injection protection

Pentests

Malware & upload blocker

Monitoring

We take care of the right cybersecurity solution for your online shop.

01

Onboarding

02

Inspection, QA

03

Active protection