Hacker Newsnew | past | comments | ask | show | jobs | submit | Reflectiz's commentslogin

More thoughts and analysis on the SolarWinds attacks and how it mirrors other types of supply-chain attack


The California Consumers Protection Act 2018, also known as CCPA, is a consumer privacy law passed by the State of California to give eCommerce, Online Finance/Banking, and eService users more information and control over how their personal information is being used, processed, and stored. Learn how is this law connected to third-party application security.


The ICO Fined Ticketmaster UK £1.25 Million for Security Failures. This is an important lesson that any security pro must learn. What should be done and what could have been done to avoid it?. The article was taken from the company's blog (by permission). The 73 page PDF document by the ICO is a must read - https://ico.org.uk/media/action-weve-taken/2618609/ticketmas...


Ticketmaster makes about 2 billion per year. So this was a 4 hour loss of revenue? Did anyone at Ticketmaster even bat an eye?


True indeed, thanks for the comment. Actually, it goes far beyond the case of Ticketmaster, and beyond money or how much a company earns. It is a warning-sign for any organizational security stakeholder and companies themselves. Specifically, if you look at the implications and analyze the case from accountability or liability perspectives, it shows us where we should look at, what should we, as cyber-security teams, should be aware of.


An overview of CSP and how it presents security challenges while trying to defend against risks created by third party code on websites, Magecart attacks and web-skimming.


Very interesting research findings from RiskIQ


Black Friday and Cyber Monday can easily go from an online retailer’s dream into a CiSO’s nightmare. What you need to know to keep your site protected from Magecart attacks and web-skimming during the shopping season


Learn why and how companies like eBay are actively port-scanning end-users’ computers from their websites


Well, you might be using the best web application firewall (WAF) solution to secure your website, but the risk of a third-party web breach is all over. Your website is still exposed to Magecart type attacks, web-skimming and client-side risks that cannot be detected.


Learn how 3rd-party apps can damage websites and how to keep your website protected against the risks they create.


Hey, thanks for your helpful feedback! You are obviously right. We have added a screenshot taken from a scan we performed to demonstrate the role of 4th-party on apps, their parents and so on. Kindly note that we don’t share websites’ identification details taken from scans we run on articles we publish. Please, do not hesitate to contact us for additional questions: tom@reflectiz.com Many thanks!


Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: