Insights

The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

| | attacks, BA breach, Blog, Client’s Side Risks, Credit Card Skimmers, e-commerce security, Insights, Magecart, third-party application security, third-party breach, Ticketmaster
Ticketmaster UK, a leading ticketing company and part of Ticketmaster, has been fined £ 1.25 million by the Information Commissioner’s Office (ICO) as it failed to protect customer data during the infamous ...
Blog – Reflectiz
Content Security Policy (CSP): Not Exactly a Magecart Vaccine

Content Security Policy (CSP): Not Exactly a Magecart Vaccine

| | attacks, Blog, Client’s Side Risks, Content Security Policy, csp, Cyber Security, e-commerce risks, Insights, JavaScript skimmers, Magecart, Magecart Attacks, Third-Party, third-party application security, web skimmers, whitelist
With millions of buyers escalating their online activity ahead of Black Friday and the holiday season, it’s important for eCommerce websites and online businesses to combat Magecart and web-skimming issues in a ...
Blog – Reflectiz
3 Web Third-Party Related Events You Don’t Want to Miss from August-September 2020

3 Web Third-Party Related Events You Don’t Want to Miss from August-September 2020

| | attacks, Blog, Credit Card Skimmers, e-commerce risks, Insights, JavaScript skimmers, Magecart, Magecart Attacks, Magecart Data Breach, Supply Chain Attacks, Tips to Protecting Your Website Against Third-Party and Client’s-Side Risks
As the end of 2020 is approaching, we see more evidence of the rising risks relating to installed third-party apps running on websites. In this month’s top 3 events we will review the ...
Blog – Reflectiz
Black Friday and Cyber Monday are coming

How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare

| | 4th-parties scripts, Acountix, Application Security, application security tests, attacks, bitsight, black friday, Blog, CISO, Client’s Side Risks, COVID-19, Credit Card Skimmers, Cyber awareness, cyber monday, CyberGRX, e-commerce risks, e-commerce security, ecom, Form-Jacking, GDPR, gocgle, Insights, IPS, Javascript, JavaScript skimmers, Magecart, Magecart Attacks, online retailers cyber threats, online shopping, Penetration Testing, Pipka, PT, Qualys, security scorecard, Supply Chain Attacks, third-party application security, TPRM, waf, web skimming
The shopping season which begins on Black Friday rolling over to Cyber Monday, is actually one of the most critical times for online retailers. During this period promotions are offered, new products ...
Blog – Reflectiz
Port-scanning

Why and How are Enterprise Companies, Like eBay, Actively Port-scanning End-users’ Computers From Their Websites

| | 127.0.0.1, attacks, Bleeping Computer, Blog, Client & Server, Client-side, Compromised Hosts, EBay, Insights, internal network action, internal network scanning, Javascript, Lloyds Bank, netflix, network scanning, port scan, port scanning, Port Scanning Technical, portscan, portscanning, Server-side, target, TD Bank, technology, Walmart, Web Sockets, Website Security, WebSockets
You might have recently heard that eBay is performing port scanning, while online shoppers are visiting their website. At first glance, it will probably sound a bit strange, as port scanning is ...
Blog – Reflectiz
Taking Third-Party Application Security to the Next Level: Reflectiz' Multiple Website Dashboard

Taking Third-Party Application Security to the Next Level: Version 2.8’s Multiple Website Dashboard

| | Blog, company, Insights, technology
Version 2.8 Goes LIVE!  Almost any organization today uses dozens of websites and subdomains. Each provides essential functions and uses dozens of third-party apps and tags to produce its capabilities. Those assets ...
Blog – Reflectiz
The Cybersecurity Effects of Fourth-Parties on Websites

The Cybersecurity Effects of Fourth-Parties on Websites

| | attacks, Blog, Insights, Magecart, technology
Fourth party apps on websites are commonly referred to as “the vendor’s vendor code”. Fourth-party apps may offer additional benefits, but at the same time they also carry a set of threats ...
Blog – Reflectiz
Introducing the new Application Owner Alerts Workflow Tool!

Introducing the new Application Owner Alerts Workflow Tool!

| | Alert Workflow, Application Owner, Blog, company, Insights, keep your website safe, Magecart, Magecart Attacks, mitigate third-party risks, OS framework, Reflectiz risk mitigation, Reflectiz' Application Owner Alert Workflow, Risk alerts, Security Alerts, technology
One of the biggest challenges we face while helping our customers mitigate third-party risks, is that not all incidents are clear cut, as in not everything is “good vs. evil”. Some vendors ...
Blog – Reflectiz
3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020 

3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020 

| | attacks, BA breach, Blog, British Airways breach, Claire's 49 days breach, Claire's and InterSport’s 49 days breach, Client-Side Attack, Client’s Side Risks, Credit Card Skimmers, EasyJet Breach, Insights, InterSport’s 49 days breach, JavaScript code, Magecart, Magecart Attacks, Pipka, pipka malware, Self-destructing Skimmer, third-party JS attacks
3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020  As always, we are working day and night to bring you the top 3 news picks related to third-party ...
Blog – Reflectiz
Attackers Inside Your Code: a Special Webinar by Reflectiz

Attackers Inside Your Code: a Special Webinar by Reflectiz

| | CISO, company, Cyber Security, cyber-security webinar, Idan Cohen, Insights, Magecart, Magecart Attacks, Media, pipka malware, third-party application security, third-party data breach, Webinar
Meet the Next Generation of Website Threats: The Hidden Risks of Third-Party Apps Learn everything you need to know about the invisible dangers of third-party apps on websites. We’ll take you all ...
Blog – Reflectiz
Load more