- Content Security Policy (CSP)
- Subresource Integrity (SRI)
- Cross-origin resource sharing (CORS)
- Strict Transport Security (HSTS)
- Trusted Types
- iFrame sandboxing
- Regular reviews of the website frontend functionality
Failing to adopt the above security controls could be catastrophic when the attackers come knocking, and they will! Such attacks are no longer restricted to only the Magento platform, with similar methods identified by the 3B Data Security forensics team in other eCommerce platforms, such as WordPress, JShop, Joomla, bespoke environments, and Widows based systems. A data breach can wipe as much as £8.8 million of the share price of a major UK company. And for those SMEs who are most likely to face such a breach costs could be in the region of £20,000 - £30,000 to cover any investigation, fines and administration fees, and costs to achieve compliance post the breach. Not including any additional fines your business may face from the Information Commissioners Offices for breaches of GDPR.
 A dynamic list of the most popular websites collated and published by Alexa Internet, a subsidiary of Amazon. Alexa Internet collects and analyses data of Internet browsing behaviour.
 Magento is an open-source eCommerce platform written in the language PHP. The platform provides the facilities to setup and manage an online store with built-in functionality for accepting card payments.