Making sure your e-shop stays open, no matter what

Robin Schmitt, APAC General Manager of Neustar

Brand reputation can be seriously damaged if retailers are unable to conduct business as a result of website outages, especially in APAC, where e-commerce is popular. According to, APAC is the biggest region globally in terms of e-commerce sales. Total online retail revenues in China, Japan, South Korea, India, and Australia alone are expected to nearly double from US$733 billion in 2015 to US$1.4 trillion in 2020, according to Forrester.

With their revenues at stake, retailers in the region are definitely interested in protecting their web presence and making sure their shopfront is available 24x7. They are concerned about their systems performing well, especially during peak times, but may not be aware of the various ways that performance may be compromised.

Ensuring availability

Distributed denial of service (DDoS) attacks is one of the top security threats facing companies today. According to Neustar’s 2016 Worldwide DDoS Attacks & Protection Report, out of the 77% of APAC organizations suffering a DDoS attack in 2016, 43% took three or more hours to detect a DDoS attack, the highest proportion compared to other regions in the world, and 45% took the same amount of time to respond to the attack – by which time untold damage could already have occurred. Retailers should evaluate the risk of an attack and establish appropriate mitigation solutions. The level of risk is largely dependent upon a number of factors, such as online presence, information captured, and potential impact on revenue, reputation and client retention. These considerations need to be addressed to determine the level of risk and how to best manage it.

There are many solutions currently available, for instance an organization might choose to pay for an ongoing DDoS mitigation service or conduct emergency mitigation when attacked. Depending on the risk, retailers need to work with a DDoS mitigation partner to protect their business. Much like theft insurance, which is sized-based on the stock retailers have on the floor and the likelihood of it getting stolen, by understanding the impact and likelihood of a DDoS attack, the partner will be able to fit the solution to the retailer.

Protection against theft

It is common for a DDoS attack to be only part of the picture – sophisticated criminals will use the attack to draw attention, while they go after the real target. Worryingly, out of the 77 percent of APAC organizations that experienced a DDoS attack, 16 percent reported ransomware. Protecting Point of Sale systems from data theft is critical and being fully Payment Card Industry (PCI) compliant is a must. Potential loss of customers’ financial data and credit card fraud are just some of the issues that can arise from not being PCI compliant.