The Next Generation of Web Third-Party Risk Mitigation

Reflectiz brings effortless solutions to help companies and organizations mitigate privacy and security risks caused by third-party technologies installed on their websites.

Detect your risks!

  • Supply Chain Risks
  • Magecart Attacks Mitigation
  • Asset Visibility
  • Privacy Compliance
  • Fast On-Boarding

Our Vision

We believe in simplicity and effectiveness.
While the third-party threat landscape is escalating dramatically, most mitigation products require tremendous amount of efforts. At Reflectiz we think different.

Our products offer an effortless cost-effective solution for websites, combining intelligent risk management process, an efficient ongoing control and, no integration requirements at all.

Simple and effective.

Our Vision

A Third-Party Attack Scenario

Danger to you Danger to you

What’s unique about Reflectiz’ solution?

Complete Site Overview

Full Third-Party Visibility

Cyber Oriented Solution

Effortless Solution

Deep Tech

Dynamic Browser Analysis

Seamless Integration

Baseline for Ongoing Protection

Alerts and Notifications

Automatic Risk Alerts

Full Third-Party Visibility

refSec provides extensive third-party inventory and robust asset management platform, all in one place. The platform performs comprehensive third-party detection, covering entire sites and each script action within.

Read more

Effortless Solution

refSec doesn’t require setup or integration and doesn’t involve production demands. It works seamlessly and externally, with no effect on your website. Once activated, refSec data instantly becomes available for you.

Read more

Dynamic Browser Analysis

refSec uses propriety browsing capabilities, offering advance dynamic third-party behavioral analysis. It identifies every action and modification, connectivity layers and remotely installed external parties - known as 4th-parties.

Read more

Baseline for Ongoing Protection

refSec doesn’t involve any installation or exhausting approval procedure and provides a complete third-party baseline from day one.

Read more

Automatic Risk Alerts

refSec lets you stay in control 24/7. The system sends automatic alerts and notifications according to the severity of each instance.

Read more

Trust by

eToro - The world first leading social trading and investing platform
Menora - Mivtachim insurance ltd
Maccabi - health services
Max - Credit card israel
Fibi - First international bank Israel

Blog

The Cybersecurity Effects of Fourth-Parties on websites

Cybersecurity Effects of Fourth-Parties

A web fourth-party is an entity, a tool or a feature that is outsourced by a vendor you use on your website. Four-parties and beyond them, refer to the vendors of your official and unofficial service providers. In this article, we will refer to fourth-parties and what’s beyond them on ...

Read more
British-Airways Magecart Third-party Breach Leads to a $230 Million GDPR Fine

BA Magecart 3rd-party Breach £183.39M Fine

According to the Information Commissioner Office in the UK (ICO) a notice has been issued to British-Airways of its intention to fine airliner $230 million (£183.39M) for “infringements of the General Data Protection Regulation (GDPR)”. The reason for the planned penalty is last year’s BA data breach of around 500 ...

Read more
Magecart Hacked Thousands of Websites Simultaneously via Picreel third-party JavaScript.

The Magecart Picreel Hack

In May of 2019, the Magecart group attacked again.  Like previous events, the group used third-party tools to attack thousands of websites simultaneously.  One of the compromised tools was Picreel, a premier Conversion Rate Optimization tool.  This incident highlights a risk many websites face today: third and fourth-party hacks lead ...

Read more