ALERT! osCommerce web site owners, in light of the recent spike in web site hacking, specifically osCommerce web site’s, it is extremely important to protect your business and your customers by upgrading your web site software and installing all security patches provided by the distributor. osCommerce is an online shop e-commerce solution available for free as an open source based software released under the GNU General Public License. While reports of hacked osCommerce web site’s are on the rise all e-commerce platforms are attractive targets for hackers.
The problem with osCommerce, as well as most open source software, is a lack of support and difficulty finding information when problems occur. Most often you are referred to forums to sift through years of posts to figure out if others have experience correcting an issue and attempting to implement their solution or “work around”. Reputable hosting companies notify their clients when their online store is at risk but most do not offer software support. There are things you can do to protect your site. You can help prevent hacking by monitoring your server logs for unusual activity, attempts to hack a web site will appear first in server logs as errors, usually someone searching for a database. Look for unauthorized access attempts or uploads to the site without your knowledge. The problem then becomes web site owners that are not comfortable installing updates or cannot find the time to perform maintenance. If you are among the previously mentioned group of web site owners we are here to help https://www.InternetMarketConsulting.com.
Protect your customers:
- Do Not Store Credit Card Numbers
- Monitor Server Logs
- Promptly Install Security Patches
- Back up Regularly
Alternative e-commerce solutions are available, that are not open source and often automatically install security updates for a specific period of time. These alternatives range in price from $1,000-$50,000 depending on their features, support and connectivity. Just because you purchase licensed software does not guarantee protection from hackers. You must remain diligent in monitoring logs, creating backups and installing updates when prompted.
Another option is to hire a website maintenance company to perform regular maintenance operations, security checks and updates. Conducting business on the Internet comes with responsibility to your customers to create a safe, enjoyable shopping experience. The idea is to create balance between security and convenience. If given the option most customers do not mind having to re-enter payment information if it means added security. In fact, I recommend that people never allow a web site to store payment information, while it may be faster and more convenient no site is impervious to a determined and well-financed hacker.