E-commerce sites now a favorite cybercrime target

Find out how to protect yours.

According to the 2013 Global Security report from Trustwave, a cloud-based compliance and information security firm, the retail industry has become the top target for cybercriminals, specifically the e-commerce industry for the first time in three years.

In describing the common target profile, Trustwave said: "Attackers targeted e-commerce sites whereby the e-commerce merchants shared several characteristics: they processed a relatively low number of transactions; relied on third-party service providers to run their sites; used an open-source e-commerce package to run the online store; and invested few resources into the upkeep of the said store."

Trustwave also observed that APAC merchants are now being compromised by using cloud-based services. The research is based on roughly 50 investigations in 2012, mostly related to payment-card fraud.

The digital incursions could have been prevented by using more stringnet passwiords, said Trustwave.

"50 per cent of users, especially employees, are still using easily guessed passwords (the most common being Password1). Unknowingly, through easy passwords and social media, employees leave the door open for further attacks," it said.

Mobile devices are also a rising target, with the firm noticing a 400 per cent increase in mobile malware, particularly for Android devices.