As the high-demand dates like Christmas and Black Friday approach, e-commerce in Brazil is preparing for a significant increase in cyber attacks. To ensure the security and stability of their platforms, many companies are already taking preventive measures to avoid issues during the shopping period.
These efforts include reviewing security vulnerabilities, correcting slow performance and errors that could lead to attacks and fraud, affecting both the user experience and brand reputation. A study by PwC shows that more than half of consumers (55%) would avoid buying from a company after a negative experience, and 8% would give up after a single unfavorable incident.
“Investing in the quality and security of digital systems not only prevents financial and image losses, but also ensures a positive experience for users, strengthening brand trust and promoting success in high-traffic events,” says Wagner Elias, CEO of Conviso, a company specialized in application security (AppSec).
Recent cases, such as the Facebook data leak and the failures in the Latam/Multiplus system, highlight the importance of robust preparation. According to a 2020 Consortium for Information & Software Quality (CISQ) report, the number of system failures increases by about 15% annually. Moreover, Security Magazine revealed that software failures caused a loss of 2.4 trillion dollars in the United States in 2022, with a growth of 1.52 trillion dollars in “technical debt,” related to rework to fix software deficiencies.
Application Security
E-commerce software protection is carried out through application security, a market expected to grow globally to reach US$ 25 billion by 2029, according to Mordor Intelligence. This work involves a comprehensive and detailed view of a system’s vulnerabilities and the implementation of proactive defense mechanisms.
“By way of comparison, it works like this: when you park your car, you consider if the location is safe and if there are measures to be taken to protect the vehicle. Similarly, problems are anticipated, and strategies are created to avoid risks,” explains Luiz Henrique Custódio, TechLead at Conviso.
Custódio suggests that companies constantly review their platforms to identify and fix possible security gaps, creating a culture of security. Furthermore, for large events, it is crucial for companies to invest in robust infrastructure and conduct load tests to ensure their systems can handle access peaks.
Consumers Should Stay Alert
Wagner Elias emphasizes that caution is crucial for both companies and consumers. For consumers, this involves following safe practices when browsing and making online transactions. “Always opt for secure payment methods, such as Google Pay, Apple Pay, or credit cards, which offer legal protection in case of issues with the seller,” advises Elias.
It also highlights the importance of keeping smartphone and PC software updated, as criminals often exploit security vulnerabilities in outdated systems. “Avoid downloading apps and software from suspicious sources, and if you need to download from a link, carefully check the information and reviews of the app,” warns Elias. “Beware of offers that seem too good to be true; they may hide fraudulent intentions.”
Fraudulent websites often mimic well-known stores to steal personal and financial information. Elias suggests always checking if the site’s URL starts with ‘HTTPS’ and displays a padlock icon in the address bar. “Fake sites usually lack these features. Also, watch out for grammatical and typographical errors, and make sure the site provides clear contact information, such as email, phone, and physical address,” he adds.
Other common fraud strategies include phishing scams, where criminals attempt to obtain personal information through fake messages, and fake apps, which often contain malware. “To avoid these issues, only download apps from official stores, like the App Store and Play Store. Also, be wary of pop-ups offering downloads of fake antivirus software, as they can be used to steal sensitive data,” Elias concludes.
