Klarna Docs - Security recommendations

Security recommendations

If you see anything suspicious, the checkout looks weird, or you detect anomalies in your transaction processing, reach out to us immediately. Let’s fight fraud together.

Your store is your brand, your identity, and the first place of contact with your customers. If it isn't secure, business relationships can be compromised. A single security breach can be a death knell for your business.

Hackers have multiple ways of threatening your store:

  • Infecting a website with malware and spreading it to site visitors
  • Stealing sensitive customer information, for example, names, email addresses, credit card details, and other transaction information
  • Adding the website to a botnet of infected sites
  • Hijacking or crashing the site

Security breaches affect your customers, you, and your business. Breaches can incur high fines, penalties, and other costs. Your business can only be successful if you build up trust and a vital relationship with your customers.

Even if a security incident doesn't cause a data breach, it can have a huge impact on customer trust.

When you're of the risks and consequences of inadequate web security, you know that you must take measures to secure your store.

All businesses, no matter the size, can fall prey to an attack. Hackers use automated tools to find vulnerable sites and they don’t differentiate between small, mid, and enterprise businesses. Threats and attacks are everywhere, so be prepared now.

  • Keep all your software up to date by always installing the latest patches. This applies to everything: the operating system, the web server, frameworks, and plug-ins.
  • Scan for security problems if a scanner is available (for example, https://www.magereport.com for Magento).
  • Be selective about granting admin rights to user accounts.
  • Delete accounts of employees or contractors that no longer work for you, as well as any unknown accounts.
  • Don’t share the same account between users so that you can link actions to a specific person.
  • Use strong passwords consisting of 10 or more characters.
  • Enable two-factor authentication (2FA) if possible.
  • Enable logging of admin actions in your store's software.
  • Monitor suspicious admin activities.

    If you see anything suspicious, the checkout looks weird, or you detect anomalies in your transaction processing, reach out to us immediately. Let’s fight fraud together.