Hot Topics

third-party application security

WeLeakInfo’s website after the hack

Instant Justice: WeLeakInfo Hacked with a Ex-domain Reuse Attack

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
Expired domains (ex-domains) have always been easy targets for hackers and cybercriminal groups. The bad news is that this trend is not going away anytime soon. In a bizarre turn of events, ...
Blog – Reflectiz
A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
23 NYCRR 500, also known as NYDFS Cybersecurity Regulation, is a law issued by the New York State Department of Financial Services (NYDFS) that mandates the enforcement of optimal data security standards ...
Blog – Reflectiz
In Retrospect: The SolarWinds Attack

In Retrospect: The SolarWinds Attack

| | attacks, Blog, Client-Side Attack, Client’s Side Risks, e-commerce security, Insights, JavaScript code, Magecart, SolarWinds, solarwinds attack, Supply Chain Attacks, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
The recently exposed SolarWinds supply chain attack is one of the biggest cybersecurity events in recent memory. It created a ripple effect that will be felt for years to come on a ...
Blog – Reflectiz
3 Web Third-Party Related Events You Don’t Want to Miss from October - December 2020

3 Web Third-Party Related Events You Don’t Want to Miss From October-December 2020

| | attacks, Blog, Client-Side Attack, COVID-19, Insights, Magecart, third-party application security, third-party java script attack, web skimming, Website Security
With COVID-19 still very much amongst us, online activity is continuing its global ascend. The security implications are also clear. Third-party applications running on websites are creating numerous risks and blind-spots that ...
Blog – Reflectiz
The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

| | attacks, BA breach, Blog, Client’s Side Risks, Credit Card Skimmers, e-commerce security, Insights, Magecart, third-party application security, third-party breach, Ticketmaster
Ticketmaster UK, a leading ticketing company and part of Ticketmaster, has been fined £ 1.25 million by the Information Commissioner’s Office (ICO) as it failed to protect customer data during the infamous ...
Blog – Reflectiz
Content Security Policy (CSP): Not Exactly a Magecart Vaccine

Content Security Policy (CSP): Not Exactly a Magecart Vaccine

| | attacks, Blog, Client’s Side Risks, Content Security Policy, csp, Cyber Security, e-commerce risks, Insights, JavaScript skimmers, Magecart, Magecart Attacks, Third-Party, third-party application security, web skimmers, whitelist
With millions of buyers escalating their online activity ahead of Black Friday and the holiday season, it’s important for eCommerce websites and online businesses to combat Magecart and web-skimming issues in a ...
Blog – Reflectiz
Top Distribution Firm LOGON Software Asia and the Third-Party Application Security Vendor Reflectiz are Announcing a New Partnership

Top Distribution Firm LOGON Software Asia and the Third-Party Application Security Vendor Reflectiz are Announcing a New Partnership

| | black friday, Blog, Chinese Bachelor Day, CISO, Client’s Side Risks, company, Compliance, cyber monday, Cyber-attack, cyber-security hong-kong, cybersecurity asia, e-commerce risks, ecommerce, GDPR, logon asia, Magecart, Magecart Attacks, Media, third-party application security, web skimmers
Hong-Kong, / Tel-Aviv, September 30th. Hong-Kong based cyber-security solutions distributor LOGON Software Asia, and Reflectiz, a cyber security company specializing in third-party application security for websites, are pleased to announce a new ...
Blog – Reflectiz
Black Friday and Cyber Monday are coming

How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare

| | 4th-parties scripts, Acountix, Application Security, application security tests, attacks, bitsight, black friday, Blog, CISO, Client’s Side Risks, COVID-19, Credit Card Skimmers, Cyber awareness, cyber monday, CyberGRX, e-commerce risks, e-commerce security, ecom, Form-Jacking, GDPR, gocgle, Insights, IPS, Javascript, JavaScript skimmers, Magecart, Magecart Attacks, online retailers cyber threats, online shopping, Penetration Testing, Pipka, PT, Qualys, security scorecard, Supply Chain Attacks, third-party application security, TPRM, waf, web skimming
The shopping season which begins on Black Friday rolling over to Cyber Monday, is actually one of the most critical times for online retailers. During this period promotions are offered, new products ...
Blog – Reflectiz
Attackers Inside Your Code: a Special Webinar by Reflectiz

Attackers Inside Your Code: a Special Webinar by Reflectiz

| | CISO, company, Cyber Security, cyber-security webinar, Idan Cohen, Insights, Magecart, Magecart Attacks, Media, pipka malware, third-party application security, third-party data breach, Webinar
Meet the Next Generation of Website Threats: The Hidden Risks of Third-Party Apps Learn everything you need to know about the invisible dangers of third-party apps on websites. We’ll take you all ...
Blog – Reflectiz

Secure Guardrails