Phishing

This is a kind of activity in which a hacker obtained sensitive information including credit card details, username, and password of a targeted user to maliciously compromise the system. They can use spam emails to disguise as though it was from a well-recognized organization, client, vendor, business or individual. They can also create a phishing profile that look like the login page of the targeted business, or organization’s e-commerce site and send a message to login to fix an error. Once the victim tries to login, the hacker captures the login details and use it to gain access to the real e-commerce site.

Spam Emails

This security threat is similar to that of malware and phishing, where the spammer usually hacks the email account of individual or organization known to their target to send spam emails. The emails are intentionally linked to an infected and phishing site that will eventually compromise the system security and the e-commerce store.

Credit and Debit Card Fraud

This is a serious identity theft fraud. It occurs when a criminal steals a victim’s credit or debit card details and use the details to make purchases from online stores. Once the store processes the order it will result in loss of revenue from chargeback since the card details are stolen.

Malware

This is a malicious code or file designed principally to cause harm to a system. The hackers may intentionally corrupt a target company’s server, computer network, leak private information, or gain unauthorized access to information, deprive user access to valuable information, and which may generally result in computer security breach and loss of revenue. Malware constitutes grave challenges to individuals and businesses.

Eavesdropping

This represents the act of listening to private communication of an individual or organization without their consent, over a computer network to gather material information. Generally, eavesdropping does not interfere with the normal operations of the unsuspecting victim. It is intentionally done to steal information. The hacker relies on unsecured network communications to gain access to information that is being transmitted between devices.

DoS and DDoS attacks

Denial of service (DoS) attack is a cyber-attack in which the hacker seeks to make a network resource unavailable to its users by flooding the target URL with excessive requests that it cannot handle. During the attack, the regular traffic on the website will be temporarily down, slow, or completely interrupted. Whereas distributed denial of service (DDoS) attack is the one in which the incoming traffic flooding the victim website originates from several sources at the same time. A DDoS attack is typically generated using thousands of unsuspecting zombie machines.