The commerce industry faces a unique set of security challenges, such as budget constraints in security teams responsible for protecting a complex infrastructure and troves of sensitive data, and an expanding threat surface brought about by its rapid digital initiatives. We examined a multitude of datasets to demonstrate what types of attacks are launched against commerce, and how their customers are being targeted, including:
- More than 14 billion web application and API attacks, and how these attacks can lead to ransomware and data breaches
- Risks of using scripts from third parties, like Magecart and web skimming attacks
- Massive growth in malicious bot requests, and how attackers are using them in credential stuffing attacks and account takeover
- Attack trends against commerce organizations in different regions