Blog

One of the biggest challenges we face while helping our customers mitigate third-party risks, is that not all incidents are clear cut, as in not everything is “good vs. evil”. Some vendors should have access to users’ data, while some should not. Some applications are managed by the marketing department, ...

3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020  As always, we are working day and night to bring you the top 3 news picks related to third-party risks on websites. In this post we will review the “new trend” of ongoing attacks that remain undiscovered. ...

Meet the Next Generation of Website Threats: The Hidden Risks of Third-Party Apps  Learn everything you need to know about the invisible dangers of third-party apps on websites. We’ll take you all the way from detection to effective mitigation. You will meet Magecart attacks, learn why you are accountable for ...

Can You Spot the Difference Between Gocgle and the Real Thing? Read our special report about Gocgle malicious campaign.  A new web skimming campaign, starting from the end of 2019, is impersonating Google web products in order to collect sensitive information from users on eCommerce websites. During the last few ...

A guest whitepaper publication by Reflectiz’ Dutch partner Cert2Connect It has been our privilege to partner with Cert2Connect over the last 12 months. We have discovered that they are one of the most proficient organizations in the cyber-security market. So, it didn’t come to us as a surprise that they ...

Welcome to Reflectiz’ news picks from the first four months of 2020. The outbreak of Covid-19 is undoubtedly one of the most dramatic events in modern history. Unsurprisingly, this global crisis and even the universal solidarity, hasn’t stopped hackers and threat actors. Over this period, we have seen increased malicious ...

Worried about regulation demands? Meet your new privacy dashboard!   With privacy breaches and regulation demands on the rise, third-parties on websites get more and more attention. Today organizations, and technology owners in particular, are required to provide a whole set of privacy related actions to comply with regulations. Similar to ...

This article seeks to address a serious issue that has been detected by our platform, including in major enterprises. It concerns the risk of using an undetected “Ex-Domain” (expired domain) on websites, demonstrating the many threats that lurk as a result of this situation. The Challenges of Using Third-Party Domains ...

Crazy days. All of us are facing new and unfamiliar challenges. If you think about staying at home from an employment perspective, even the tiniest tasks become more complicated. For many, it is about the ability to contribute to their organization and bring essential value, but for cyber-security professionals, it ...