The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

Ticketmaster UK, a leading ticketing company and part of Ticketmaster, has been fined £ 1.25 million by the Information Commissioner’s Office (ICO) as it failed to protect customer data during the infamous February 2018 data breach. The company is still not taking ownership of the breach, caused by a third-party ...

Content Security Policy (CSP): Not Exactly a Magecart Vaccine

Content Security Policy (CSP): Not Exactly a Magecart Vaccine

With millions of buyers escalating their online activity ahead of Black Friday and the holiday season, it’s important for eCommerce websites and online businesses to combat Magecart and web-skimming issues in a proactive and relentless manner. Can the proven and tested Content Security Policy (CSP) get the job done? Without ...

How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare

How Black Friday and Cyber Monday Can Go From a Retailer’s Dream Into a CiSO’s Worst Nightmare

The shopping season which begins on Black Friday rolling over to Cyber Monday, is actually one of the most critical times for online retailers. During this period promotions are offered, new products are launched, and the shopping websites themselves invest all their resources to increase the volume of purchases. Unfortunately, ...

3 Web Third-Party Related Events You Don’t Want to Miss from August-September 2020
September 3, 2020

3 Web Third-Party Related Events You Don’t Want to Miss from August-September 2020

As the end of 2020 is approaching, we see more evidence of the rising risks relating to installed third-party apps running on websites. In this month’s top 3 events we will review the 102-day Warner Music Group breach, how web skimmers were able to use Telegram, and the most interesting UltraRank ...

The Cybersecurity Effects of Fourth-Parties on Websites

The Cybersecurity Effects of Fourth-Parties on Websites

Fourth party apps on websites are commonly referred to as “the vendor’s vendor code”. Fourth-party apps may offer additional benefits, but at the same time they also carry a set of threats while running on your websites. For your users, they are all, first-parties. In this article, we will refer ...

3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020 
July 2, 2020

3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020 

3 Web Third-Party Related Events You Don’t Want to Miss from May-June 2020  As always, we are working day and night to bring you the top 3 news picks related to third-party risks on websites. In this post we will review the “new trend” of ongoing attacks that remain undiscovered. ...

Attackers Inside Your Code: a Special Webinar by Reflectiz

Attackers Inside Your Code: a Special Webinar by Reflectiz

Meet the Next Generation of Website Threats: The Hidden Risks of Third-Party Apps  Learn everything you need to know about the invisible dangers of third-party apps on websites. We’ll take you all the way from detection to effective mitigation. You will meet Magecart attacks, learn why you are accountable for ...

The Gocgle Malicious Campaign

The Gocgle Malicious Campaign

Can You Spot the Difference Between Gocgle and the Real Thing? Read our special report about Gocgle malicious campaign.  A new web skimming campaign, starting from the end of 2019, is impersonating Google web products in order to collect sensitive information from users on eCommerce websites. During the last few ...

3 Web Third-Party Related Events You Don’t Want to Miss from early 2020

3 Web Third-Party Related Events You Don’t Want to Miss from early 2020

Welcome to Reflectiz’ news picks from the first four months of 2020. The outbreak of Covid-19 is undoubtedly one of the most dramatic events in modern history. Unsurprisingly, this global crisis and even the universal solidarity, hasn’t stopped hackers and threat actors. Over this period, we have seen increased malicious ...