Stay secure with the latest e-commerce cybersecurity trends, news, and tips to protect your online business from cyber threats.
Search across headline titles and summaries.
Background for this topic.
E-commerce is the activity of buying and selling goods and services online. It involves transactions made on the internet, ranging from retail shopping and auctions to banking services and online ticket bookings. In the context of information security, E-commerce encompasses the protection of sensitive data, such as customer credit card numbers, personal information, and transaction records.
Information security measures in E-commerce aim to safeguard against threats like hacking, identity theft, and phishing. This includes the implementation of security protocols like SSL/TLS for secure communications, employing encryption to protect data in transit, deploying robust authentication mechanisms to verify user identities, and adhering to compliance standards like PCI-DSS that are designed to protect customer data within payment systems.
E-commerce security also involves regular security audits, monitoring for suspicious activities, and having incident response plans in place to address potential breaches swiftly. The integrity, confidentiality, and availability of E-commerce platforms are critical for maintaining consumer trust and ensuring the smooth operation of online marketplaces.
Weekly headline count for the current query.
SAP has released the May 2026 security updates addressing 15 vulnerabilities across multiple products, including two critical flaws in the Commerce Cloud enterprise-grade e-commerce platform and the S/4HANA ERP suite. [...]
UK Government Said It Is Working With Chinese Officials to Remove ListingsThe U.K. government is working with Chinese officials to remove the sensitive de-identified data of 500,000 participants of the UK Biobank that was listed for sale on the Chinese e-commerce site Alibaba. U.K. officials said the incident did not appear to involve a cyberattack.
UK government Minister confirms that breached health records of UK Biobank volunteers were up for sale on Chinese ecommerce platforms before being removed
World's largest biomedical dataset lifted and shifted on Chinese mega marketplace Updated Details of volunteers of UK-based Biobank, which describes itself as the custodian of the world's most comprehensive biomedical dataset, are for sale on Chinese ecommerce site Alibaba.…
A massive campaign impacting nearly 100 online stores using the Magento e-commerce platform hides credit card-stealing code in a pixel-sized Scalable Vector Graphics (SVG) image. [...]
Customizations are causing pain so new cloud will stick to upstream cuts of the open source stack LY Corporation, the Japanese web giant that dominates messaging, e-commerce and payments in many Asian countries, has revealed it is replacing a heavily-customized OpenStack cloud with a more conventional cut of the open source cloud stack – and making massive consolidations along the way.…
Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named AtlasCross RAT
Cybersecurity researchers have discovered a new payment skimmer that uses WebRTC data channels as a means to receive payloads and exfiltrate data, effectively bypassing security controls
Seoul Accuses E-Commerce Giant of 'Self-Investigation,' Impeding Government ProbeSouth Korea's data protection watchdog told e-commerce giant Coupang to stop publishing its "self-investigation" findings into a massive data breach and demanded the interim CEO, a U.S. citizen, return to the country to meet with a police - drawing criticism from U.S. Republican lawmakers.
Order and contact details accessed via ecommerce partner, and phishing has begun Blockchain security biz Ledger says customer information was accessed in a breach at its ecommerce payment partner Global-e, and is warning that other brands using the platform may also be affected.…
Critics of South Korea's Coupang Dismiss Offer as Marketing More Than CompensationAfter suffering a data breach that exposed personal data for two-thirds of South Korea' population, online retailer Coupang promised to distribute $1.2 billion in vouchers to "restore customer trust." But critics have accused the move of being more about marketing than true compensation.
Also: Cyber Insurers Brace for AI Risk, Shopping Agents Rewrite E-commerceIn this week's ISMG Editors' Panel, four editors examine how artificial intelligence is quietly reshaping trust, risk and decision-making, from identity verification and cyber insurance to the rise of AI agents in online shopping. The ISMG Editors' Panel runs weekly.
Japanese e-commerce giant Askul Corporation has confirmed that RansomHouse hackers stole around 740,000 customer records in the ransomware attack it suffered in October. [...]
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season: Phishing kits for mass-creating fake but convincing e-commerce websites that convert customer payment card data into mobile wallets from Apple and Google. Experts say these same phishing groups also are now using SMS lures that promise unclaimed tax refunds and mobile rewards points.
Chinese Developer Formerly Employed by Company Suspected of Data TheftSouth Korea's biggest online retailer, Coupang, said a five-month breach exposed personal data pertaining to 34 million customers, and only came to light after it received an extortion demand. Police said a former developer at the company, a Chinese national who fled the country, is a suspect.
E-Commerce Face Existential Threat as Autonomous Shoppers Bypass AdsThe online retail industry spent decades honing how to nudge people into clicking the buy button. Now it faces a customer who doesn't want anything at all: the artificial intelligence shopping agent. Agentic commerce could hollow out retail media and force a shift in how platforms monetize.
The South Korean police are tracking the suspect behind a cyber-attack targeting e-commerce giant Coupang
CVE-2025-54236 is a critical flaw in Adobe Commerce (formerly Magento) that allows attackers to remotely take over sessions on the e-commerce platform.
E-commerce security company Sansec has warned that threat actors have begun to exploit a recently disclosed security vulnerability in Adobe Commerce and Magento Open Source platforms, with more than 250 attack attempts recorded against multiple stores over the past 24 hours
Cybersecurity researchers have shed light on a new campaign that has likely targeted the Russian automobile and e-commerce sectors with a previously undocumented .NET malware dubbed CAPI Backdoor