WooCommerce Builders

If you build products, services or websites with and for WooCommerce, visit Do the Woo where you will keep informed, connected and supported through the WooCommerce builder community.

Take the 2020 WooCommerce Builder Survey

Three Questions on WooCommerce Security

There is a lot around security, but I recently asking Kathy Zant to answer these three questions.

What changes have we seen in 2019 so far with security and the affect it has on WordPress?

The number one story of 2019 is something that’s been happening for a while, but I think it kind of scaled, and has gone through some growth and an uptick in activity.

I think right now the biggest issue in security is that the username password model is broken and we need to make sure the one that we’re using creates unique passwords everywhere… and using a password manager to manage all of those unique complex passwords.

How do we decide whether we need a plugin or an actual person to stay on top of our security?

Obviously, the more resources the better. But that’s the great thing about WordFence right out of the box. Once you install it and it’s freely available on the repository, 90% of the functionality of WordFence is actually free. You can install it and right out of the box it’s going to walk you through the most generic recommended settings to get you started.

We all need to up our game because it’s a constant cat-and- mouse game of staying one step ahead of the malicious hackers who are trying to leverage the hacked sites.

I would recommend leveraging professionals, but learn from them more than anything else and take what you learn and apply it yourself, not only with your WordPress site and your eCommerce sites, but also in your digital life going forward.

What is PCI compliance for online stores and how do you factor it in with your growth?

It means that if you’re taking credit cards, like Visa and MasterCard, you want you to adhere to best practices of security in order to keep their customers and your customer’s data safe.

When I talk to people who are just getting started with eCommerce, I tell them go read the 12 parameters that PCI DSS want you to look at and get familiar with them.

You need to understand how that payment processing is happening, so when you’re ready to grow and those standards apply to you much more stringently, you’re prepared for it and you can plan for that growth going forward because that’s why we’re in eCommerce: to sell more, keep costs down and make more money.