We are fast approaching the season that has been dubbed “the most wonderful time of the year” in rhyme and song. While family, friends, and feasts play a major role in helping this season be wonderful, it is undeniable that giving and receiving are also significant supporting characters. As millions of us are getting ready to stay home, sit by the fire, and fire up our apps and browsers to shop for Cyber Monday deals, the Rapid7 Labs team thought it might be helpful to make a list of some steps online merchants can take (and check twice) to make sure the shopping experience is as safe and secure as possible for both themselves and their customers.
To make this list as practical as possible, we’ll use examples from two case studies along the way:
1. Stay certifiably secure
Whether it be an app or a website, SSL/TLS certificates are the first safety component shoppers will encounter, and the strength of the server certificate configuration sets the stage for more secure outcomes.
Our “high-profile” list consists of merchants featured by Visa that are in the “Pay with Visa Checkout” merchant program. In theory, these sites should have exemplary online safety configurations.
Online retailers can measure the strength of their own site’s SSL/TLS configurations using a free online checker. Rapid7 Labs used the same grading criteria against our high-profile merchant list and found that most of these sites do a decent job configuring their SSL/TLS certificates, with only a small number of them getting below an “A” grade.
If you use the aforementioned SSL/TLS checker and receive anything but an “A,” you can head ..
Support the originator by clicking the read the rest link below.
