Cybersecurity Insights

Information Security, Payments Security, Website Security, Forensic Investigations, Incident Response & Offensive Security articles

Top picks / Featured

FEATURED

The Potential Risks Of Exposed Admin Login Panels

Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or ...

READ STORY
FEATURED

Threat Alert: Magento Intercept Backdoor and Re-Infection

Our Threat Intelligence Group recently identified an attack through our FGX-Web solution that upon investigation revealed very clever techniques implemented to both breach and reinfect the target ...

READ STORY
FEATURED

Anatomy Of A Magento Attack: Froghopper

Magento is the most popular eCommerce web application in the world, with an estimated 236,000 live websites using the Content Management System (CMS)[1]. Available in both paid-for “enterprise” ...

READ STORY
FEATURED

"Key" to Secure Data - P2PE - Derived Unique Key Per Transaction (DUKPT)

Written by Andrew McKenna, PCI QSA, PCIP at Foregenix The encryption key infrastructure usually used in PCI P2PE solutions is based on the DUKPT (pronounced duck-putt) model. This key hierarchy was ...

READ STORY
FEATURED

Serious Vulnerability Discovered in Adminer database Administration Tool

Foregenix are warning all their partners this morning about a vulnerability discovered in the popular database administration tool Adminer, affecting versions up to and including v4.6.2. The ...

READ STORY
FEATURED

An Overview on Purple Fox

Introduction The trojan known as Purple Fox was first discovered by 360 Total Security on September 25th 2018. At the time of publishing, the statistics they had gathered estimated that over ...

READ STORY

POPULAR TOPICS

Cybersecurity 96 Web Security 80 Website Security 59 Magento 53 PCI, PA-DSS and P2PE 46 Forensics and Incident Response 40

Most popular articles

The Potential Risks Of Exposed Admin Login Panels

Aug 06, 2019
Threat Alert: Magento Intercept Backdoor and Re-Infection

Sep 15, 2022
Anatomy Of A Magento Attack: Froghopper

Aug 07, 2017

PCI, PA-DSS and P2PE

PCI Compliance guidelines, frequent answered questions,  announcements and reports.

VIEW ALL ARTICLES
Foregenix reappointed on the PCI SSC (GEAR) for the 3rd consecutive time

Nov 04, 2022
PCI SSC announce new Information Supplement: Guidance for Containers and Container Orchestration Tools

Sep 20, 2022
Why E-commerce Merchants should migrate to PCI DSS SAQ A v4.0 ASAP

Aug 23, 2022

Web Security

Discover resources and insights to help you protect your website from cyber threats. New malware detection, trend reports, website security scan tool features. 

VIEW ALL ARTICLES
Magento Security Scan - What do you need to know?

Jun 20, 2023
New Magecart Attack - ALERT

May 18, 2023
Website Security Scanners - What To Consider

May 17, 2023

Check you Website Security for FREE

SCAN YOUR WEBSITE NOW

Latest Articles

Significant - ACTIVE -  eCommerce Malware Infection

Sep 19, 2023
Bolstering eCommerce Website Security: Easy Steps to Safeguard Against Breaches

Aug 17, 2023
Magento Security Scan - What do you need to know?

Jun 20, 2023
4 Steps to Improve Your Magento Store Security

Jun 12, 2023
eCommerce Cyber ThreatScape - June 2023

Jun 07, 2023
New Magecart Attack - ALERT

May 18, 2023
Website Security Scanners - What To Consider

May 17, 2023
eCommerce Cyber ThreatScape - May 2023

May 13, 2023
eCommerce Security - 5 Tips to Protect Your Business

Apr 20, 2023
Foregenix reappointed on the PCI SSC (GEAR) for the 3rd consecutive time

Nov 04, 2022
PCI SSC announce new Information Supplement: Guidance for Containers and Container Orchestration Tools

Sep 20, 2022
Threat Alert: Magento Intercept Backdoor and Re-Infection

Sep 15, 2022
ThreatView - Monitor Your Website for Malware, Threats and Risk

Sep 03, 2022
Why E-commerce Merchants should migrate to PCI DSS SAQ A v4.0 ASAP

Aug 23, 2022
Dude! It's just a printer!

Apr 21, 2022
An Overview on Purple Fox

Apr 12, 2022
Pleased to be part of the 2021 PCI SSC Latin America Forum

Aug 25, 2021
Cryptographic Architecture for Cloud and the Online World Part 2: Futurex - Q&A

Aug 11, 2021
ModPipe Malware Malware Indicators

Apr 01, 2021
ModPipe Malware has a new module that siphons Credit Card Data

Mar 23, 2021
Cryptographic Architectures Webinar - answers to your questions

Mar 02, 2021
How to test centralised logging

Jan 26, 2021
Interview With Benjamin Hosack on Safety Detectives

Jan 22, 2021
Software Security Framework (SSF) - Overview & FAQ

Jan 06, 2021
Reflections on the recent SolarWinds breach

Dec 17, 2020
The PCI Software Security Framework (SSF) is taking off!

Dec 17, 2020
Point-to-Point Encryption (P2PE) Overview

Dec 16, 2020
SWIFT Customer Security Programme (CSP)

Dec 09, 2020
Success Stories with Mihnea at Swedbank Pay

Nov 17, 2020
Interview With Benjamin Hosack on Safety Detectives

Nov 11, 2020
Success Stories with Dr Clive at iKhokha

Oct 28, 2020
Success Stories with Pavel at Datecs

Oct 19, 2020
Foregenix’s Global Penetration Testing Practice Achieves CREST Accreditation

Oct 08, 2020
Magento 1 Under Attack

Sep 15, 2020
What are SSL Certificates?

Sep 08, 2020
Amazon GuardDuty Security Review

Sep 02, 2020
All you need to know about PCI Forensic Investigations

Aug 20, 2020
Foregenix Partners with ITQ Digital!

Aug 18, 2020
Join Us at PCI Latin America Forum 2020!

Aug 13, 2020
Foregenix Re-Selected for PCI GEAR 2020-2022

Aug 06, 2020
Foregenix Partners with Sonassi to secure Magento websites

Jul 20, 2020
We're proud to announce our partnership with Unisys!

Jul 16, 2020
Let’s help secure the Magento Community - Advice & Resources

Jul 15, 2020
Magento 1 End of Life - With one week to go, here are the facts.

Jun 24, 2020
Looking ahead to PCI DSS Version 4.0

Jun 10, 2020
Using DNS as an out-of-band command output retrieval channel

Jun 04, 2020
WebScan eCommerce Industry Report & Magento End of Life

May 20, 2020
An Introduction to Cardholder Data Discovery as Part of a PCI DSS Assessment

May 14, 2020
Web Ninja partners with Foregenix to enhance website security!

May 12, 2020
4 Reasons You Need File Integrity Monitoring (FIM) 

May 07, 2020
CIA While Working Remotely

Apr 29, 2020
5 Ways to Prevent Downtime on Your Magento Store

Apr 23, 2020
WebScan eCommerce Industry Report - April

Apr 21, 2020
Detection Lab for Pentesters

Apr 15, 2020
Introducing RETURNINGPATIENT

Apr 09, 2020
Red Teaming: Command and Control protocols

Apr 07, 2020
Social Engineering in a Time of Social Distancing

Apr 03, 2020
A first look at today’s Command and Control frameworks

Apr 01, 2020
The PCI Software Security Framework (SSF)

Mar 30, 2020
Foregenix to offer new CMMC services

Mar 27, 2020
Foregenix Becomes Accredited as BankAxept Third-Party Auditor

Mar 26, 2020
WebScan eCommerce Industry Report

Mar 18, 2020
Qakbot/Qbot - What to do if it got you?

Feb 19, 2020
Migrating to Magento 2 - What You Need to Know From a PCI DSS Perspective

Feb 12, 2020
Magento 1 Reaching End Of Life in June 2020 - What does it mean for you?

Feb 10, 2020
Kick-starting your internal Purple Team program on a budget

Jan 30, 2020
The Hero’s Journey in Cybersecurity

Oct 15, 2019
October is Cybersecurity Awareness Month!

Oct 08, 2019
Successful Partnership with AHHA

Oct 01, 2019
Top Questions To Ask Your Web Developer

Sep 04, 2019
The Growing Scourge of ATM Cash-Outs

Aug 20, 2019
Supporting the Magento Community

Aug 19, 2019
What Is JavaScript And Why Should You Care If You Own A Website?

Aug 15, 2019
The Potential Risks Of Exposed Admin Login Panels

Aug 06, 2019
What Is Malware? And How To Prevent An Attack.

Jul 30, 2019
What's a WAF, and Why Do I Need One?

Jul 22, 2019
POS Malware Data Breaches And Why They Keep Happening

Jul 10, 2019
eCommerce, Big or Small – Are You Being Hacked Right Now?

Jun 14, 2019
9 Million Websites Shows Half a Million Are At "High Risk" Of Breach

Jun 07, 2019
Foregenix wins Queen's Award 2019!

Apr 23, 2019
Foregenix and Tranwall join forces to tackle global ATM Cashout fraud

Apr 17, 2019
How we protected Welgevonden Game Reserve against Hackers and Poachers

Apr 04, 2019
Data Breach Liabilities - PCI Penalties, GDPR and a Warranty

Mar 27, 2019
The All New FGX-Web!

Mar 19, 2019
Over 75% Of Global Magento Websites At High Risk Due To A Simple Oversight

Mar 13, 2019
What is Managed Detection & Response?

Mar 05, 2019
Cyberattacks Within Schools

Jan 25, 2019
Highest Profile Hacks in 2018

Jan 22, 2019
Serious Vulnerability Discovered in Adminer database Administration Tool

Jan 18, 2019
Why Cybersecurity Training Is Important As An SME.

Nov 27, 2018
Why Your Business Should Deploy File Integrity Monitoring

Nov 19, 2018
Increased card usage across the payment landscape

Oct 22, 2018
Testing Problematic Authorisation Tokens With Burp

Oct 05, 2018
The payment industry is stepping up the fight against fraud with P2PE

Sep 26, 2018
Foregenix Live Hack taking centre stage at Mastercard Innovation Forum

Sep 25, 2018
Using a hosted payment page? This is why you still need to secure your website.

Sep 10, 2018
Foregenix to join the PCI SSC Global Executive Assessor Roundtable.

Aug 22, 2018
FGX-Web gets a fresh new look!

Aug 22, 2018
What can a Website Security Health Check provide you?

Aug 16, 2018
P2PE - What are the benefits to retail merchants?

Aug 15, 2018
Foregenix Launch New WebScan Service!

Aug 10, 2018
P2PE: How, what and why – The PCI SSC Latin America Forum.

Aug 09, 2018
Stronger and more frequent Brute Force Attacks are now the norm

Jul 16, 2018
Foregenix Place #4 In The Growth 100!

Jul 11, 2018
Digital Forensics in the Asia-Pacific region

Jul 09, 2018
Foregenix take Consultancy Practice of the year at the Cyber Security Awards!

Jul 05, 2018
Getting to Grips With the Australian Notifiable Data Breaches Scheme

Jun 19, 2018
Foregenix Identify Multiple Dell EMC RecoverPoint Zero-Day Vulnerabilities

May 21, 2018
Risk & Privacy: What are the board level considerations?

May 17, 2018
New Services to Secure Blockchain & Cryptocurrency

May 16, 2018
Foregenix Take Best Security at The Techies 2018!

May 14, 2018
Know Your Attack Surfaces

May 02, 2018
Purple Teaming, here's what you need to know.

Apr 27, 2018
Facebook Ads Extension for Magento Leaking Magento Version

Apr 25, 2018
Foregenix named as finalists in The Techies 2018!

Apr 18, 2018
Reducing the Impact of a Breach Through Early Detection (Part 2) - Incident Response vs Incident Readiness

Apr 18, 2018
Responsible Disclosure of Zero-Day Vulnerabilities Discovered in NfSen and AlienVault OSSIM (Part 2)

Apr 17, 2018
Embrace Failure To Improve Your Security

Apr 12, 2018
Reducing the Impact of a Breach Through Early Detection (Part 1)

Apr 09, 2018
Security Spring Clean:  Safeguarding Magento.

Apr 06, 2018
New malware affecting Zend Framework.

Apr 03, 2018
Conquering PCI DSS In The Contact Center

Mar 29, 2018
You are the Weakest Link … Goodbye!

Mar 16, 2018
Women of Cybersecurity [#InternationalWomensDay]

Mar 08, 2018
International Women's Day - Why Are There Less Female Cybersecurity Professionals?

Mar 08, 2018
Is VOIP The Weak Link In Your Security Chain?

Mar 07, 2018
Why PCI compliance is important as a Travel Agent.

Feb 28, 2018
Sunday Times Export Track 100 List Foregenix For Second Year Running

Feb 27, 2018
What is required to meet PCI DSS as a Travel Agent?

Feb 26, 2018
Steve Perry Creative - A Partnership That Works

Feb 20, 2018
Foregenix Partner With Ground Labs To Strengthen GDPR Services

Feb 14, 2018
5 Steps To Make Your Travel Agency PCI Compliant

Feb 12, 2018
Foregenix expands into Brazil with new São Paulo office

Feb 07, 2018
Foregenix aim to help travel agents meet IATA accreditation deadline

Feb 06, 2018
Foregenix expands APAC presence with Dan Ball, Territory Manager. 

Feb 05, 2018
Foregenix takes it's place in the Fast Growth 50

Feb 02, 2018
Identifying a Social Engineering Attack

Feb 01, 2018
10 Things To Consider When Carrying Out A Data Audit

Jan 31, 2018
CyberFirst Girls Competition Encourages Young Women To Engage Cybersecurity

Jan 29, 2018
Cryptocurrency Malware Affects 55% Of Businesses Worldwide.

Jan 17, 2018
Your Encryption Checklist

Jan 12, 2018
Supply Chain Attacks: A Closer Look

Jan 09, 2018
Black Friday Sees Website Traffic Increase by 200%

Nov 24, 2017
Successfully implementing GDPR: Compliance and Awareness

Nov 17, 2017
GDPR – Keeping things simple.

Nov 02, 2017
Data Discovery: The only place to start with GDPR

Oct 31, 2017
Improving Cybersecurity in the Contact Center: How to Reduce the Risk of a Breach  [Webinar]

Oct 26, 2017
Five reasons why GDPR isn’t all about fines.

Oct 25, 2017
Introducing: XOR-Based SQL Injection

Oct 25, 2017
WiFi KRACK Attack

Oct 18, 2017
Foregenix Partner Up With London Agency, objectsource

Oct 18, 2017
Foregenix Highly Commended at Fraud Awards 2017

Oct 17, 2017
Why an SSL certificate won’t protect your website, but FGX-Web will.

Oct 09, 2017
Is My Hosting Provider Protecting My Website?

Oct 04, 2017
We're Showcasing Cybersecurity at Ecommerce Expo 2017!

Sep 28, 2017
Responsible Disclosure of Zero-Day Vulnerabilities Discovered in NfSen and AlienVault OSSIM

Sep 25, 2017
Containers: Keeping You Secure

Sep 14, 2017
Foregenix Achieve 11 Award Nominations in 6 Months

Sep 11, 2017
Getting The Most Out Of Your Web Application Penetration Test

Sep 08, 2017
An Introduction to DevOps

Sep 06, 2017
Anatomy Of A Magento Attack: Froghopper

Aug 07, 2017
Premier League Club Shows Commitment To GDPR

Aug 03, 2017
Foregenix Partner with Magento Solutions Partner, PushON

Aug 02, 2017
How Your Cyber Security Efforts Can Turn Into Security Nightmares

Jul 27, 2017
Foregenix Review of the Office for National Statistics Crime Survey

Jul 21, 2017
Magento Websites: How is the security health of your website?

Jul 10, 2017
Take the Guesswork Out of Your Website Security

Jul 07, 2017
Why You Need To Defend Against Nation State Attacks

Jul 06, 2017
Penetration Testing: The Quest For Fully UnDetectable Malware

Jul 05, 2017
Foregenix Partner with Magento Solutions Partner, Williams Commerce

Jun 30, 2017
Foregenix opens up in Germany as international demand heats up

Jun 30, 2017
Password Manager OneLogin breached.

Jun 15, 2017
General Data Protection Regulation (GDPR) is coming. Don't bury your head in the sand.

Jun 01, 2017
“Mind the Gap” – As a Small eCommerce Business, Who is Responsible for Your Security?

May 26, 2017
8 Critical Steps to Reduce the Risk of Ransomware Infection

May 23, 2017
Foregenix announce new partnership with Juno Web Design

May 16, 2017
Foregenix choose Australia as launch pad for Asia Pacific expansion

May 05, 2017
New survey shows 78% of eCommerce websites at risk

Apr 11, 2017
New JavaScript Malware Targeting Stripe.js on Magento Websites - Ajax Harvester

Apr 04, 2017
Foregenix Selected as Excellence Award: Industry Leadership Finalist for the SC Awards 2017 Europe

Apr 03, 2017
Alert: New PHP Webshell Identified

Mar 03, 2017
Foregenix named as rising Cyber Security export star in the Sunday Times SME Export Track 100

Feb 27, 2017
Magento Security Tips - What Can You Do To Protect Your Website?

Feb 23, 2017
Information Privacy, The General Data Privacy Regulation (GDPR) & Your Business

Jan 30, 2017
Vulnerabilities on ManageEngine EventLog 10.7 through 11.2 (Service Pack 11023)

Dec 23, 2016
Encryption 102: 5 Methods of Encryption (Part 2)

Dec 07, 2016
Magento Malicious JavaScript in Action

Nov 08, 2016
Magento Websites - Have You Patched SUPEE-8788 Yet?

Nov 04, 2016
Encryption 101 - How it works. (Part 1)

Oct 21, 2016
Your website may have been hacked - what next?

Oct 08, 2016
Questions for a Point-to-Point Encryption (P2PE) Consultant

Sep 26, 2016
WebScan Website Security Results: 12% HACKED, 53% AT RISK

Aug 31, 2016
Alert: Magento "Cloud Harvester" Malware Targeting Insecure Websites

Aug 04, 2016
Hacked eCommerce Websites and Self-Notification

Jul 15, 2016
SAQ A & SAQ A-EP - Security & PCI Compliance For eCommerce Businesses

Jul 05, 2016
Alert: Major UK Payment Service Provider iFrame Man-In-The-Middle Breach

Jun 16, 2016
TeamViewer Used to Attack Leading Footwear Retailer

Jun 10, 2016
Between 35,000 and 40,000 credit cards exposed to hackers after coding errors led to SQL Injection.

May 25, 2016
Magento Security Advisory: CVE-2016-4010

May 19, 2016
IT Web Security Summit 2016 - Bryanston, South Africa

May 18, 2016

Load more

You reached the end of the list.

play
Event

Payment Systems & Data Security Summit 2023 by Cyberwise

Sep 27, 2023  

Start watching
RESOURCE CENTER

Explore the resources that can help protect your business

Learn from our experts by heading to our webinar page. Learn from our experts by heading to our webinar page.Learn from our experts by heading to our webinar page.

Explore our content
SUBSCRIBE

Subscribe to our blog

Security never stops. Get the most up-to-date information by subscribing to the Foregenix blog.