If you’re an ecommerce business owner, then you should know how crucial it is to make sure that your website is secure and protected against malware and other digital attacks.

But knowing is not always the same with doing, which is why we’ve prepared a list of recommendations that can help enhance the security of ecommerce websites built using the Magento platform.

“Please Update Your Password”

These days, it is no longer enough to create a password made from n letters, x characters, y signs and who knows what else. Regardless of how unbreakable you think your password is, one way to add an extra level of protection for your website is making sure that you set your website settings to give passwords a lifetime of 90 days, so that every 3 months you create a new one.

Patch, Patch, Patch

When it comes to Magento websites, we can’t stress this enough: always ensure that your website is up to date with the latest security patches. Not sure if that’s the case? Then you should go and check that now.

As an Adobe Gold Partner (formally known as Magento Enterprise Partner), at Williams Commerce, we always announce our customers of the release of the latest security patches as soon as they’re out, so we can move fast and implement them.

Another way you can stay tuned to the latest patch releases is by subscribing to Magento’s security alerts. You can do that here.

Monthly Checks

Keep ahead of hackers and malware attacks by verifying your ecommerce store monthly and answering the following questions:

  • Are all your current admins still active? If the answer is no, make sure to remove permissions to anyone that may be no longer working with you.
  • Is there any malware or lacking security patches on your website? You can find out the answer to this question by scanning your website using the MageReport.com service.
  • Are all the system file permissions set according to the corresponding Magento permission guidance? If not, then this needs to be fixed urgently.

Upgrading to the latest version of Magento

Magento developers are more than aware of the threats hackers can pose to their platform. They are quick to react to any potential security risks they may have spotted and pull together guidelines for security updates and patches, making them immediately available to the Magento community of agencies and developers immediately. 

This is why ensuring online retailers keep their site on the very latest edition of Magento Commerce or Magento Opensource (formerly known as Magento Enterprise and Magento Community respectively) can deliver great security benefits and is strongly recommended.

This is especially the case for those still using Magento 1, as the Magento 1 end-of-life is fast approaching in June 2020, meaning Magento will no longer be supporting the old platform and no longer providing updates and security patches after June 2020.  If you find yourself in that position, Williams Commerce, being an experienced Magento certified partner (and now an Adobe Gold Partner), can help you make a swift and seamless migration from Magento 1 to Magento 2.  

Get in touch with our ecommerce team to discuss your project requirements.

Final Words

These are some of the key ways in which you can add an extra level of protection against malware to your Magento website, but if you’re not sure how to implement any of our suggestions, or you want to find out more about Magento, don’t hesitate to contact us.