Question

Security is an integral part of an E-Business. The Online Business always feel insecure due to a lot of hacking attempts every day. If you are running some Social Media Website how you will increase the security of that website? Discuss different types of security issues and their solutions by using suitable examples.   

Answer 1

Increasing the security of the website by:

• By managing permissions regarding posting something on social media it the better way of security by adding the permissions for posting something on social media
• By installing software that protects from the offensive content that is dangerous and threatening to your brand
• By using social media security tools such as the social safeguard that can protect the website from the posts that go against the policy of the social media content.
• By creating social media policies to make sure that everyone follows the guidelines, rules, and regulations.
• Limited access to data security of social media website is the best way to secure your website because most of the time the security breach is done internally from the employees so limited access should be given to avoid breaches
• Put someone in-charge for handing social media website is the best way because in this way you assign a key person who monitors the social media presence of the brand and he can be held responsible if any breach happens under him.

Different types of security issues and their solutions with example


1. Financial frauds
Financial frauds are very common in the e-commerce business in which the hackers make unauthorized transactions and which can cause the business to lose a certain amount.
Let’s take the example of the online fraud such as refunds in which the fraudsters make a fake refund request after using the product and then asking for the refund or saying that the product received is damaged and asking for the money in return.

2. Phishing
An example of phishing is when the hacker's email and customers in the name of the company and ask them for their details or some sensitive details and after gaining the access to the personal data the hackers exploit it as per his benefits.

3. DDoS attacks
These attacks are the denial of service attacks that are used to disrupt the website so that it can affect the overall sales of your website.
Let’s take example-when some discounts are going on the website and hackers want to disrupt your sales then he can flood the severs with numerous requests until your website crashes.

4. Spam
In the type of attack, the spammers send the infected mail to harm the security of the people. when people click on that email and see that messages it affects the security of the website and also damages the speed of the website too.
For example- when hackers want to slow down some websites they continuously send the spam emails to make sure that the servers of the website break down due to a lot of spam emails.

5. Bots
Some bots are been developed to scrape websites for their inventory and pricing information. Hackers use such information to change prices of the online store or they can garner the best selling inventory to make their sales decline affecting their shopping carts.


6. SQL injections
These are done on databases to access your database by targeting the queries of submission firms. Then the hackers inject bad code in your database or malicious code so that they can collect the data and then delete it.


7. Trojan horses
Mainly customers face this security issue by downloading trojan horses to their system. It caused the security threat in which the attackers use programs to reach the sensitive data with ease.

Solutions for these security issues

1. SSL certifications
Secure socket layer certificates are those files that are linked to transactions on different parts over the network. Credit card details and debit card details are associated with these certificates this makes sure that your card details are safe and secure over the internet.

2. Switch to HTTPS
Instead of using the HTTP which is defunct now, everyone should update to the HTTPS because it represents that the website or the webpage is secure and it also blocks the hackers from accessing the website. So it is the most secure way to protect your website by switching to HTTPS.

3. Securing admin panels and security servers
Ecommerce platforms have default passwords and settings which are very easy to guess so changing the passwords should be the priority to prevent the attacks. Using the complex passwords for the server and the admin panels because this is the only way to keep them more secure.

4. Antivirus solution
An antivirus prevents serious frauds because they use special algorithms for flagging malicious activity and transactions to help you to take further actions.

5. Firewalls
Firewalls are another effective recommendation to protect us from unprotected networks. It can offer you permeability and allows only trusted sources. It protects us from cyber attacks and threats such as the SQL injections etc.

6. Payment gateways security

Credit card details are saved while making the payment through the payment gateways which is a liability. It is an invitation to hackers to hack into your payment gateways and affect the customer's sensitive data. To make sure that the payment gateways are always safe and secure the PCI DSS standard should be used because this standard is the benchmark for safety and security over the payment methods.

7. Multilayer security
To protect from the DDoS attacks the widespread CDN(consent delivery network) can be used to protect the site. Two-factor communication by email verification and the mobile no verification is another way to protect from the attacks. So employing the multi-layer security you can ensure that the risk of the theft of your data is very less.