Warn customers of seasonal scams

Wolfgang Kandek offers his recommendations for keeping businesses protected from malware and other security risks over the festive season

With Christmas around the corner, millions will be shopping online for gifts and festive accoutrements – more often than not, while at work or from home using a company device.

Retailers prepare for the increased traffic and plan their sales and promotions to lure shoppers. Unfortunately, this also means that criminals will be targeting retail websites, perhaps hacking into sites to try to steal credit card information or take control of the computer.

Many customers of resellers could be at risk from employees accidentally accessing malicious websites or otherwise being exposed to hacking scams. And IT professionals may take up to a day to repair a single compromised computer.

We have seen hackers do everything from attacking retail websites to steal credit card information, to distributing malicious links, to spoofing trusted shopping or coupon sites. We have also seen e-greetings cards incorporating malicious links. Such links can be distributed via email, instant messaging, search engines or social media.

Resellers can and should help their customers educate employees about the security risks.

Systems should be configured to ensure that credit card details and personal data are kept secure in typical e-commerce transactions.

Make sure their operating systems are up to date, as cyber criminals may target known security holes in common software. Teach them to run regular updates themselves. Check their browsers are up to date as well.

Ensure they have updated anti-virus and other security software, and check their websites to see if they are being used to spread malware – perhaps via user posts or ads and links.

Wolfgang Kandek is chief technical officer at Qualys