Mobile commerce targeted by cybercriminals

Craig Hendrickson
eCommerce Hosting Solutions Consultant  
Monday, February 25, 2013  

Website owners can build trust with visitors by displaying IT security awareness.

Leveraging new technology trends presents a number of business challenges. Once companies determine the feasibility of a project such as optimizing the website for mobile platforms, numerous other considerations frequently emerge. IT security has become a crucial part of most technology discussions, as cybercriminals expand the number of targeted platforms and devices. Bank Systems and Technology contributor Luge Pravda recently profiled the threat posed to mobile commerce, noting that the growing popularity of mobile payment systems presents an opportunity for hackers.

"In the case of mobile offers and payment forms, exploitation of the devices and operating systems is actually executed by the user, even though it's driven by the criminal," Pravda wrote. "Would-be fraudsters need to somehow trick us into installing or accessing something we shouldn't. The Eurograbber Trojan recently affected those European banks that use two-factor authentication with the use of SMS message codes to allow users to conduct online banking. And therein lies the apathy characteristic – the banks' customers thought they were using a cutting-edge level of security – whereas in fact they were being compromised, and millions of dollars were stolen."

Online retailers face similar challenges to those of financial institutions. As interest in mobile hosting solutions grows, businesses must ensure they are adequately protecting sensitive information. In addition to technological safeguards and best practices, companies can benefit from spreading awareness of common threats so that consumers know what to look for. For example, when cybercriminals used a fraudulent IRS website as part of a phishing campaign, the IRS issued a warning to explain the differences between the legitimate and fraudulent version of its site. 

Businesses can take a similar approach by communicating the latest threats to their audiences through email campaigns and posting alerts on the website. Even if a particular attack isn't related to a specific brand, showcasing IT security awareness could still build consumer trust.