Cyber Security For eCommerce

In this article I’ll be discussing measures you can take to help improve the security of your eCommerce stores.

Disclaimer: I am not a professional web developer or cyber security expert. These are just tips I implement to improve the security of my online businesses. To create a personalized security protocol for your business, or if you experience hacks/leaks, always consult a specialist for your platform.


These apply to all online accounts, not just eCommerce stores.

  • Choose a strong password – include capital letters, numbers, symbols and make sure you use a different password per account.
  • Use separate emails each time you open an online store. This is helpful for business purposes too.
  • Install multi-factor authentication on all your accounts where possible. This can be a hassle if you lose your authentication device (try not to) and you might have to contact your platform, but better lock yourself out than someone else.
  • Be aware of phishing. Don’t click links in emails unless you are expecting them e.g. resetting your password. Always log in from the domain. Channels with millions of subs have been compromised through phishing emails, so never let your guard down.

eCommerce protection measures

This article gives a great summary of measures you can take when building an eCommerce store: privacy, integrity, authentication and non-repudiation.

It also gives links to platform specific security guides.

I go through it in the video, recommended read.

As mentioned in the article, there are many measures you can take to secure your online store such as installing firewalls, anti-virus software, the list goes on.

If your store is small, it’s unlikely you practically need all these features, however there are a few considerations you shouldn’t skip.

  • Make sure your site has an SSL certificate. This is a form of encryption which secures information entered into your website, such as customers’ credit card numbers. Common eCom platforms like Shopify and WordPress offer SSL.
  • Multi-layer security (MFA and a strong password).
  • Check any applications thoroughly before installing, or use the ones provided by your site builder only.
  • Trademark your brand and set up an LLC. Not a site security measure per se but gives you legal protection against counterfeit sites. Having limited liability also means your personal assets can’t be seized if you run into financial trouble.

Protecting Your Online Income

As a digital entrepreneur, diversification is the best way to make sure you can sleep well at night.

Whether it’s getting hacked, policy changes or suspensions, there’s always threats to your online businesses.

While many people rely on a single website (e.g. Youtube, POD sites) to earn a living and have been doing just fine, you don’t want to the one of the unlucky few that lose it all.

Try to set up multiple streams of income so you are not too reliant on any single one.

Share this article if you found it helpful!