The growth of e-commerce during high-demand dates, such as Christmas and Black Friday, also leads to an increase in cyberattacks in Brazil. To ensure the stability and security of their e-commerce platforms, many companies are already starting preparations to prevent their customers from facing issues during shopping.
This involves reviewing security vulnerabilities, slowness, and errors that can lead to attacks and fraud, affecting both the user experience and the brand's reputation. A PwC study reveals that more than half of consumers (55%) would avoid buying from a company after a negative experience, and 8% would give up after a single unfavorable incident.
“Investing in the quality and security of digital systems not only prevents financial and image losses, but also ensures a positive experience for users, strengthening trust in the brand and promoting success in high-traffic events,” says Wagner Elias, CEO of Conviso, a company specialized in application security (AppSec).
According to the specialist, recent cases such as the Facebook data leak and the Latam/Multiplus system failures highlight the importance of robust preparation in a situation like this, given the increase in security attacks on companies worldwide. According to a 2020 report by the Consortium for Information & Software Quality (CISQ), the number of system failures increases by about 15% annually. Furthermore, Security Magazine revealed that software failures caused a loss of $2.4 trillion in the United States in 2022 and a growth of $1.52 trillion in "technical debt," related to rework to fix deficiencies in software.
Application Security
The work of protecting e-commerce software is carried out by what is called application security, a market that is expected to grow across the planet, reaching US$25 billion in 2029 (Mordor Intelligence).
It consists of having a comprehensive and detailed view of a system's vulnerabilities and implementing defense mechanisms proactively. "By way of comparison, it works like this: when you go to park your car, you consider whether the location is safe and if there are measures to be taken to protect the vehicle. Similarly, problems are anticipated and strategies are created to avoid risks," compares Luiz Henrique Custódio, TechLead at Conviso.
For Custódio, the ideal would be for companies to constantly review their platforms to identify and correct possible security breaches, creating a culture of security.
Additionally, for large events, it is important for companies to invest in robust infrastructure and perform load testing to ensure their systems can handle peak access.
Consumers Should Beware
Wagner Elias, CEO of Conviso, emphasizes that caution is essential for both companies and consumers. However, for consumers, this involves following safe practices when browsing and conducting online transactions. Always choose secure payment methods, such as Google Pay, Apple Pay, or credit cards, which offer legal protection in case of issues with the seller.
He also emphasizes the importance of keeping smartphone and PC software up to date, as criminals often exploit security vulnerabilities in outdated systems. Avoid downloading apps and software from suspicious sources, and if you need to download from a link, carefully check the information and reviews of the app. Elias also warns: "Be careful with offers that seem too good to be true; they may hide fraudulent intentions."
Fraudulent sites often imitate well-known stores to steal personal and financial information. Elias suggests other tips: "Always check if the website URL starts with 'HTTPS' and has a padlock icon in the address bar. Fake sites usually do not have these features. Additionally, be attentive to grammatical and typographical errors, and make sure the site provides clear contact information, such as email, phone number, and physical address."
Other common fraud strategies include phishing scams, where criminals attempt to obtain personal information through fake messages, and fake apps, which often contain malware. "To avoid these problems, only download apps from official stores like the App Store and the Play Store. Also, be cautious of pop-ups offering fake antivirus downloads, as they can be used to steal sensitive data," he concludes.
