Compliance for Third-Party scripts on your website and how to ensure it

Compliance for Third-Party scripts on your website and how to ensure it

A guest whitepaper publication by Reflectiz’ Dutch partner Cert2Connect It has been our privilege to partner with Cert2Connect over the last 12 months. We have discovered that they are one of the most proficient organizations in the cyber-security market. So, it didn’t come to us as a surprise that they ...

3 Web Third-Party Related Events You Don’t Want to Miss from early 2020

3 Web Third-Party Related Events You Don’t Want to Miss from early 2020

Welcome to Reflectiz’ news picks from the first four months of 2020. The outbreak of Covid-19 is undoubtedly one of the most dramatic events in modern history. Unsurprisingly, this global crisis and even the universal solidarity, hasn’t stopped hackers and threat actors. Over this period, we have seen increased malicious ...

The Risks of Ex-Domain Re-use on Websites and How to Stay Protected Against It
April 20, 2020

The Risks of Ex-Domain Re-use on Websites and How to Stay Protected Against It

This article seeks to address a serious issue that has been detected by our platform, including in major enterprises. It concerns the risk of using an undetected “Ex-Domain” (expired domain) on websites, demonstrating the many threats that lurk as a result of this situation. The Challenges of Using Third-Party Domains ...

Stay Home, Stay Safe and How to Stay Relevant During the Coronavirus Outbreak
April 7, 2020

Stay Home, Stay Safe and How to Stay Relevant During the Coronavirus Outbreak

Crazy days. All of us are facing new and unfamiliar challenges. If you think about staying at home from an employment perspective, even the tiniest tasks become more complicated. For many, it is about the ability to contribute to their organization and bring essential value, but for cyber-security professionals, it ...

Immediate Free Website Protection Against Third-Party Risks During the Covid-19 Crisis 

Immediate Free Website Protection Against Third-Party Risks During the Covid-19 Crisis 

Supply-chain attacks, website third-party risks, client-side threats, Magecart attacks, foam-jacking…, It’s all there, threatening your most valuable asset. Today these threats become more crucial as more online services are added, in many cases without prior security controls. Don’t Stress! We have you covered during the Coronavirus crisis! So, what’s inside ...

The Coronavirus Impacts on Cybersecurity

The Coronavirus Impacts on Cybersecurity

Protecting Your Website Against Major Threats, Supply-Chain Attacks and Client’s Side Risks During Coronavirus Times The Coronavirus (Covid-19) outbreak has now officially been declared a global pandemic by the World Health Organization (WHO). As well as causing unexpected health problems, it is also impacting the economies. Hackers are already knocking ...

Looking at the Figures of Third-Party Application Security on Websites (Part 1)
January 26, 2020

Looking at the Figures of Third-Party Application Security on Websites (Part 1)

For several years Reflectiz has been exploring the landscape of third-party apps all over the world-wide-web. We do this as a part of our mission to help organizations protect their online businesses, websites and other digital assets from third-party risks. From our research, we have collected and analyzed petabytes of ...

3 Third-Party Application Security Insights of the Last Years
January 16, 2020

3 Third-Party Application Security Insights of the Last Years

WOW, 2019 was a busy year, but if you look at the decade that ended recently, it was hectic! For the beginning of the 2020’s and to celebrate the end of the second decade, we’ve collected 3 of the most influential and interesting web third-party events. It was a hard ...

Pipka: A New Breed of Anti-Forensic Malicious JavaScript
December 23, 2019

Pipka: A New Breed of Anti-Forensic Malicious JavaScript

Pipka is one of the most interesting and notorious types of JavaScript skimmers we’ve seen so far. It brings higher level of sophistication, creativity and boldness like never before, as well as putting harder challenges to website security practices. In November 2019 the Visa Payment Fraud Disruption (PFD) team exposed ...