Decoding Security data incident response plan

Decoding Security 113: What A Disaster

The 2018 Winter Olympics got off to a shaky start this year thanks to a cyberattack. The attack took down the official Olympics website, preventing access to tickets, thus preventing many ticket holders from attending the opening ceremonies. This kind of cyberattack could happen to any size organization at any time. In fact, it could happen to any person at any time. Cybercriminals often hack into individuals’ personal computers, allowing them access to private online assets, like family photos. No matter who you are, it’s important to put together an incident response plan (IRP) to protect your information should a crisis occur. In this week’s episode, our hosts share a few simple steps that anyone can take to create a response plan.

 

Read More

Tales of A Cybercriminal’s Treasure: A Guide to Website Security [Infographic]

What does a pirate attack on a celebrity yacht and a website compromise have in common? Read our infographic to learn the unprecedented parallels between how stealthy pirates stole from a yacht during a high-profile party, and how cybercriminals are increasingly sneaking their way into websites for self-serving purposes, like to steal email addresses and credit card info they can resell on the black market.

Read More

SiteLock

SiteLock INFINITY Wins Gold in 2018 Cybersecurity Excellence Awards!

Company Also Earns Silver and Bronze Across Additional Categories

We’re excited to announce that SiteLock earned Gold, Silver, and Bronze recognition across multiple categories in the 2018 Cybersecurity Excellence Awards!

SiteLock® INFINITY took home the Gold in the Best Website Security category, further reinforcing its reputation and performance as an industry-leading malware and vulnerability detection and remediation solution. As the only product on the market to offer continuous scanning, automatic malware removal and complete automated CMS core security patching, INFINITY offers unparalleled protection in today’s evolving cyber world.

Read More

SMART PLUS

Ecommerce Patching Comes To SMART PLUS

In December, SiteLock introduced its revolutionary new product SMART PLUS – an industry first offering robust open source content management system (CMS) protection.  In addition to protecting the three most popular CMS platforms Joomla!, WordPress, and Drupal, SMART PLUS now protects  the two most popular eCommerce platforms: WooCommerce and Magento.

Read More

sitelock podcast how to prevent ransomware

Decoding Security 112: Back Up or Pay Up – Dissecting Ransomware

A few cybercriminals recently hit the jackpot – literally. “Jackpotting,” a hack that forces ATMs to dispense large amounts of cash on demand, hit the cybercrime scene in a big way, with six reported cases in the United States during the last week of January alone. In other cybersecurity news, exercise tracking app Strava and its public heatmap of user activity raised serious privacy concerns this week. A sharp-eyed student noticed that small, secluded areas of high Strava activity in countries like Syria, Afghanistan, and Somalia could potentially indicate the locations of several US military bases.

Read More

cyberattacks 2018

What Website Owners Need to Know About Cyberattacks In 2018

Imagine if one in every 15 websites you visited was secretly taken over by cybercriminals trying to steal your credit card information or other personal data. Now imagine if that website was your website, and you had no idea it was harming your visitors. This is the reality for many website owners, and now more than ever, they  need to be on alert for cyberattacks in 2018.

In Q3 2017, SiteLock discovered alarming cybercrime trends that will likely affect websites for months to come. The most worrying trend for website owners: cybercriminals are increasingly using malware, or software that is used for malicious purposes, to take advantage of website visitors. In fact, nearly 15 percent of malware attacks targeted website visitors with the goal of exploiting them for sensitive data, website traffic, and other assets or resources. That’s not all: cybercriminals attempted to compromise more websites in Q3 2017 than in the previous quarter, increasing their attempted attacks by 16 percent

Read More

Web Application Security

Alert: Joomla! 3.8.4 Released Today With Important Security Updates

The Joomla! team has been hard at work today releasing version 3.8.4, which contains multiple security updates and bug fixes. Specifically, four major security vulnerabilities were found in Joomla! core files. These vulnerabilities impact all Joomla!  versions from 1.5 to 3.7. Three of the four vulnerabilities identified were cross site scripting (XSS) vulnerabilities found in modules and components within the core application. These vulnerabilities could potentially allow attackers to inject malicious code into otherwise legitimate website files. The fourth vulnerability, a  SQL injection (SQLi) vulnerability, was identified in the post-install message and could have allowed attackers to inject malicious code into the Joomla! MySQL database.  

Read More

email security

Decoding Security 111: Email Security Mistakes

Looking for a date in time for Valentine’s Day? If you’re using Tinder, be careful when swiping right. Cybersecurity researchers discovered security flaws in the popular dating app that could allow hackers to discover users’ private data and personal preferences, like the photos of users they’ve swiped right or left on. In other cybersecurity news, a cybercrime “conglomerate” named Zirconium has been found responsible for the largest malvertising operation of 2017. Using a network of 28 fake ad agencies, Zirconium strategically placed ads that led users to malicious websites pushing scams or fake software updates. The campaigns were so successful – and so sneaky – that they generated 1 billion ad views in 2017.

Read More

sitelock website security insider q3 2017

Nancy and the Terrible Tale of Malware

Nancy is a small business owner who runs an ecommerce store selling women’s clothing. She knows there’s a lot of competition out there, so she works hard to make her customers happy. She’s found that one of the best ways to attract new customers and keep them coming back is by creating a feature-rich, user-friendly website that visitors love to use. Nancy’s website provides an easy shopping experience for her customers thanks to the features included with ecommerce plugins like Magento and WooCommerce. It also includes linked social media accounts, videos, pages of merchandise, and more!

One day, Nancy woke up to an inbox full of emails from frustrated customers. Something was wrong with her website! 

Read More

sitelock podcast principle of least privilege

Decoding Security 110: It’s A Matter of Trust

We’re just days into 2018 and cybersecurity already has its first major headline of the year: Meltdown and Spectre. By exploiting common features found in modern microprocessors, cybercriminals have been able to use the attacks known as “Meltdown” and “Spectre” to steal sensitive information from any computer, device, and even the cloud. We’ll walk you through how and why Meltdown and Spectre happened, and which security patches are already available.

We’ll also provide an overview of the principle of least privilege, the concept of restricting user permissions as a preemptive security measure. Join our hosts, security analysts Jessica Ortega and Ramuel Gall, as they provide important tips that everyone, from parents to CTOs, can use to protect themselves from the cybersecurity risks caused by human error.

Want to learn more about how both businesses and individuals can improve their cybersecurity savvy? Check out our past podcasts on endpoint and website security or social media security. For more Decoding Security, subscribe on YouTube, iTunes, or Google Play!

Page 1 of 30

Powered by WordPress & Theme by Anders Norén