Cybersecurity Insights

Benjamin Hosack

Benj Hosack is a Director and co-Founder of Foregenix Limited. Foregenix is a specialist information security business delivering services in Forensics, PCI DSS, PCI P2PE, PA-DSS and information security solutions within the Payment Card Industry. Our technologies are designed to simplify security and PCI Compliance. Specialties: Cardholder Data Discovery - defining and reducing PCI DSS Scope / PA-DSS / PCI DSS / P2PE / Account Data Compromise Investigations. We are specialists in the Payment Card Industry and work with all types of companies in the payment chain (Acquiring banks, Processors, hosting providers, web designers, merchants, systems integrators etc).
Find me on:

Recent Posts

Benjamin Hosack

Magento Malware: Credit Card Hijack – Malicious Javascript Alert

23/11/15 16:39

Our forensic team have just wrapped up a forensic investigation on an e-commerce business that has had a considerable number of customer data stolen – including credit card data. This latest Magento malware attack involved a malicious Javascript – recently announced by Magento on the 16th November 2015.

Read More
Benjamin Hosack

Top 5 Questions about FGX-Web and Website Security

12/10/15 12:11

In our day-to-day deployments of FGX-Web Alert and FGX-Web Protect we often get questions from the website developers about the functionality and capabilities of FGX-Web. We’ve summarized the top 5 questions and answers for you:

Read More
Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More
Benjamin Hosack

Magento Security - New Magento Malware - Credit Card Harvester – Beware!

27/08/15 06:30

Recent forensic cases have highlighted a new attack for Magento websites that is highly effective at stealing payment card data.  If you run a Magento website, you need to be aware of this.


Read More

Benjamin Hosack

Benj Hosack is a Director and co-Founder of Foregenix Limited. Foregenix is a specialist information security business delivering services in Forensics, PCI DSS, PCI P2PE, PA-DSS and information security solutions within the Payment Card Industry. Our technologies are designed to simplify security and PCI Compliance. Specialties: Cardholder Data Discovery - defining and reducing PCI DSS Scope / PA-DSS / PCI DSS / P2PE / Account Data Compromise Investigations. We are specialists in the Payment Card Industry and work with all types of companies in the payment chain (Acquiring banks, Processors, hosting providers, web designers, merchants, systems integrators etc).
Find me on:

Recent Posts

Benjamin Hosack

Magento Malware: Credit Card Hijack – Malicious Javascript Alert

23/11/15 16:39

Our forensic team have just wrapped up a forensic investigation on an e-commerce business that has had a considerable number of customer data stolen – including credit card data. This latest Magento malware attack involved a malicious Javascript – recently announced by Magento on the 16th November 2015.

Read More
Benjamin Hosack

Top 5 Questions about FGX-Web and Website Security

12/10/15 12:11

In our day-to-day deployments of FGX-Web Alert and FGX-Web Protect we often get questions from the website developers about the functionality and capabilities of FGX-Web. We’ve summarized the top 5 questions and answers for you:

Read More
Benjamin Hosack

Magento Malware Scanner

15/09/15 15:29

If you run a Magento website, you need to take steps to protect your online business now.

The Foregenix forensic team has been seeing escalating numbers of websites built on Magento being compromised and losing clients data, such as:
• Personal Data
• Payment card data
• Account credentials

Read More
Benjamin Hosack

Magento Malware Alert: Is your website being Brute Force Attacked?

15/09/15 12:04

Magento Security: The Forensic Team at Foregenix has identified a number of cases concerning the same method of Brute Force attack.

Attackers were able to gain access to the Magento Connect Manager of multiple Magento websites, through Brute Force Attack, due to a combination of weak passwords, open access to the website’s Magento extension download page (www./downloader/.cache/community), and open access to the Magento Connect Manager login page itself (www./downloader/index.php), neither of which should be publicly available.

Read More
Benjamin Hosack

Magento Security - New Magento Malware - Credit Card Harvester – Beware!

27/08/15 06:30

Recent forensic cases have highlighted a new attack for Magento websites that is highly effective at stealing payment card data.  If you run a Magento website, you need to be aware of this.


Read More