Insights

Immediate Free Website Protection Against Third-Party Risks During the Covid-19 Crisis 

Immediate Free Website Protection Against Third-Party Risks During the Covid-19 Crisis 

Supply-chain attacks, website third-party risks, client-side threats, Magecart attacks, foam-jacking…, It’s all there, threatening your most valuable asset. Today these threats become more crucial as more online services are added, in many cases without prior security controls. Don’t Stress! We have you covered during the Coronavirus crisis! So, what’s inside ...

The Coronavirus Impacts on Cybersecurity

The Coronavirus Impacts on Cybersecurity

Protecting Your Website Against Major Threats, Supply-Chain Attacks and Client’s Side Risks During Coronavirus Times The Coronavirus (Covid-19) outbreak has now officially been declared a global pandemic by the World Health Organization (WHO). As well as causing unexpected health problems, it is also impacting the economies. Hackers are already knocking ...

Looking at the Figures of Third-Party Application Security on Websites (Part 1)
January 26, 2020

Looking at the Figures of Third-Party Application Security on Websites (Part 1)

For several years Reflectiz has been exploring the landscape of third-party apps all over the world-wide-web. We do this as a part of our mission to help organizations protect their online businesses, websites and other digital assets from third-party risks. From our research, we have collected and analyzed petabytes of ...

3 Third-Party Application Security Insights of the Last Years
January 16, 2020

3 Third-Party Application Security Insights of the Last Years

WOW, 2019 was a busy year, but if you look at the decade that ended recently, it was hectic! For the beginning of the 2020’s and to celebrate the end of the second decade, we’ve collected 3 of the most influential and interesting web third-party events. It was a hard ...

Pipka: A New Breed of Anti-Forensic Malicious JavaScript
December 23, 2019

Pipka: A New Breed of Anti-Forensic Malicious JavaScript

Pipka is one of the most interesting and notorious types of JavaScript skimmers we’ve seen so far. It brings higher level of sophistication, creativity and boldness like never before, as well as putting harder challenges to website security practices. In November 2019 the Visa Payment Fraud Disruption (PFD) team exposed ...

3 Web Third-Party Related Events from the Web You Don’t Want to Miss – December 2019
December 10, 2019

3 Web Third-Party Related Events from the Web You Don’t Want to Miss – December 2019

Welcome to Reflectiz team news pick from November and December 2019. These months were particularly busy for us. Our team participated in 2 important conferences – InfoSecurity North-America and e-Crime & Cybersecurity Benelux, presenting to CiSOs and cyber-security teams the next generation of web third-party risk mitigation solution. Busy as ...

The Facebook Like Button Is Not as Innocent as It Seems.
October 27, 2019

The Facebook Like Button Is Not as Innocent as It Seems.

The ubiquitous Facebook Like button you encounter on almost every website is not as innocent as it appears to be. It has far-reaching privacy effects that are not immediately visible to your site’s visitors. With the latest ruling by the European Court of Justice, business websites should be extra careful. ...

Why Your Web Application Firewall (WAF) Will Not Help Against Third-Party Website Attacks?
September 18, 2019

Why Your Web Application Firewall (WAF) Will Not Help Against Third-Party Website Attacks?

Why Your Web Application Firewall (WAF) Will Not Help Against Third-Party Website Attacks? In spite of having the best web application firewall (WAF) system securing your website, the risk of a third-party web breach is all over   An interactive, dynamic website is the ‘online’ face of your business. It ...

Magecart Hacking Groups: How They Are Expanding Their Limits Beyond the “Regular” E-Commerce Websites
September 15, 2019

Magecart Hacking Groups: How They Are Expanding Their Limits Beyond the “Regular” E-Commerce Websites

Magecart, the notorious e-commerce hacking group, has lately started targeting many other forms of online services and businesses. The adversaries have developed sophisticated tools and techniques, and are constantly evolving new and innovative ways to target business enterprises.   Magecart – The Notorious Skimming Groups Magecart today is a well-known ...