Skip to content


Free eCommerce Cybersecurity Resources.

eCommerce Cyber Security - Understand the Threats

We monitor millions of websites around the world for threats and report on any trends we see, such as targeted platforms/CMS/Shopping Carts, types of malware being used to steal customer payment data, and so on. 

Our forensic team assist MANY hacked eCommerce websites each year - much of our capability to proactively detect threats comes from this experience, enabling us to provide the most up-to-date and comprehensive eCommerce Threat Detection capability globally.

Our mission is to protect small to medium sized organisations from criminals - through information, education and our technology.

What are the latest insights?

Download our latest report at the link below (scroll down for previous reports).

eCommerce ThreatScape Report

Which is the most targeted platform?

What do cyber criminals look for in potential victims?

How to defend against cyber criminals.

Enter your email address to receive eCommerce Security Advice and report updates

We will not share your email and will only send you report updates and related security advice. You may unsubscribe by clicking the unsubscribe link on each email.

Start your journey to a safe eCommerce website here:


Update your password regularly

This is age-old advice - so we wouldn't suggest it if it wasn't critical. Read our blog for advice on how to choose a safe password. Multi Factor Authentication will provide even stronger protection - a low-cost but highly effective security control.

Change your Admin Path URL

This is the URL you and your team use to log in to your website. Website platforms have default settings - as an example, Magento websites by default use the same variation of URL. If you leave your admin access in the default location, it makes it very simple for an attacker to find your admin page - and they have a far better shot at gaining access to your website. In fact... it's easy to break in, unless you have security in place to protect your site.

Monitor the accounts which are accessing your website's backend

Never share accounts. Run regular audits on admin accounts - keep admin access to a minimum. You should know who has access to your website. If accounts are logging in at unexpected hours, this could be a sign that an attacker has compromised the account.

Check your recently changed files - are they genuine?

Many compromises involve files being added or changed on a website. Take a look at your change log for any suspicious file activity - who made those changes, were they planned, are the files legit?

Scan your website regularly for indicators of compromise, malware

Using an external malware/IOC scanner, such as ThreatView for free monthly external scans using the latest threat intelligence - can give you a quick and simple insight into the security posture of your website.

ThreatView includes historic data so that you can track changes to your Risk Score over time.

Monitoring & Protecting your website

Get started with ThreatView today


  1. Market-Leading Threat Detection
  2. External website threat assessment
  3. Monthly Risk Assessment
GET IT NOW - FOR FREE.  (simple set up, nothing to install)


  1. Market-Leading Threat Detection & Protection
  2. $5,000-$100,000 Breach Protection Warranty
  3. Live chat, email and telephone support