Last Friday of this month, Black Friday takes place, a period characterized by promotions, but also by a significant increase in frauds and scams. According to the 2024 Brazilian Public Security Yearbook, virtual fraud crimes could increase by up to 13.6% during this event. While much is discussed about how consumers can protect themselves against attacks, there are also strategies that e-commerce businesses can adopt to prevent criminals from taking advantage of their information.
The increase in traffic and online transactions during Black Friday puts e-commerce at risk. To help companies prepare, NAVA Technology for Business shares four mistakes e-commerce businesses should pay attention to in order to increase security during Black Friday.
1- Fragile technology infrastructure:Many sites are not prepared to support the high volume of traffic. It is essential to review all infrastructure elements, especially communication links, to ensure the stability of the digital environment.
2- Data security limited to Black Friday:Security must be a continuous process, integrated into corporate governance and not just a concern during a specific time of the year, such as Black Friday. Companies that invest in secure development, test and implement robust security practices in the technology environment, whether in the cloud or on-premises, will be better prepared throughout the year to face traffic spikes and threats.
3-Lack of the Zero Trust concept:Traditional security controls may be insufficient for the current scenario. Implementing a Zero Trust approach – which continuously validates users and devices – helps to more comprehensively protect the digital environment.
4- Lack of team training:It is vital that the teams responsible for e-commerce operations are trained throughout the year. Prepared professionals are able to identify and solve problems more efficiently during Black Friday.
Fraud Protection
In addition to the mentioned checks, companies need to adopt specific technical precautions in the virtual environment. Cloud e-commerce should follow practices that ensure security and compliance, starting with defining security responsibilities, separating controls that are the responsibility of the cloud provider from those of the company itself. "Adherence to security standards, such as those of the Cloud Security Alliance (CSA), is also necessary to protect data and transactions. Regular reviews are recommended to ensure that all security controls are properly implemented and functioning with a high degree of reliability," says Edison Fontes, Chief Information Security Officer (CISO) of NAVA.
The executive also warns about the threat of increased use of Artificial Intelligence by cybercriminals. Although AI can be an ally for companies, organized crime also uses it for more complex attacks. The speed and volume of data that AI allows to be processed are exploited to increase the number and complexity of intrusion attempts. "Anticipating these threats involves investing in AI Monitoring that identifies suspicious behaviors that may indicate malicious use of AI," the specialist adds.
