A seller’s guide to staying cyber safe during COVID-19

  • Transcript

    A seller’s guide to staying cyber safe during COVID-19

    During the COVID-19 pandemic, it hasn’t been business-as-usual for many businesses. This is especially true for brick-and-mortar stores that have had to take their shops online, opening up to a whole new crowd of customers — and a new collection of risks.
    COVID-19 has showed us how quickly the world can change, but the need to stay cyber safe hasn’t. Being aware of cyber safe selling practices is key to protecting your online store from cyber attacks.

    Keep your store safe with these simple steps

    Use a secure e-commerce platform

    When you’re searching for the right platform for your online business, make sure that cyber safety plays a role in your decision. Research the security features offered by each platform, including:

    Multi-factor authentication
    Customer data encryption
    Real-time threat alerts


    A secure platform doesn’t just keep your business safe — it keeps your customers happy too. Your customers won’t be satisfied if their personal and financial information is stolen or exposed.

    Practice safe passwords

    All employees should use a passphrase, a series of at least four words and 15 characters in length.
    Or use complex passwords with:

    • At least 12 characters
    • Upper and lower case letters, numbers and symbols
    • No personal information

    Use a different password for every account

    Never share your passwords with anyone

    Change your passwords if an account has been compromised

    Enable multi-factor authentication

    Multi-factor authentication (MFA) adds an extra layer of protection for your accounts and devices. MFA uses two or more different ways of verifying that you are who you say you are – we call these authentication factors.

    Some different types of authentication factors include:

    • Proof of who you are, like fingerprint scanners or facial recognition
    • Proof of what you know, like a security question or password
    • Proof of what you own, like a USB key

    Don’t take the bait

    Businesses are key targets of phishing and spear-phishing scams. In these scams, cyber criminals, often masquerading as employees, ask for sensitive company information, like passwords or financial info.

    If you receive an unexpected email, even if it looks like it’s from a colleague, here’s what to do:
    Breathe. Phishing messages often pressure or threaten you to respond quickly. If an email needs you to “act now”, it could be a scam.

    Don’t open any links or attachments you’re unsure of. Reach out to the sender through a different channel, like by phone, to confirm.

    Talk to tech support. Unsolicited messages asking you to reset a password or update account info are likely fake.

    Delete any messages that seem too good to be true, like winning a contest you didn’t enter.

    Get more tips to protect yourself, your business and your devices at

    Follow us on social media

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: