Cybersecurity Insights

Isabel Louisa Rawlings

Top Questions To Ask Your Web Developer

04/09/19 11:49

Choosing a web developer can be a tricky task but ensuring you find the right one, who will maintain a secure (as well as beautiful) website, is key. We have compiled a list of top security-related questions you should ask your web developer to ensure they are going to protect your website.


Read More

The Growing Scourge of ATM Cash-Outs

20/08/19 10:51

Over the past three years, Foregenix has seen an unprecedented rise in successful attacks against banks that issue payment cards. This has resulted in hard currency ending up directly in criminals hands. Many banks are oblivious to the risks, even though there have been significant alerts from government agencies, leading card brands, cybersecurity vendors and press around these ATM cash-outs. Bank’s card management and processing environments are being targeted.

Read More
Benjamin Hosack

Supporting the Magento Community

19/08/19 13:41

Protecting your Magento Website is SIMPLE

Our forensic statistics show that Magento websites are being targeted by criminals - it is a growing problem affecting a large number of businesses - BUT it is a problem that is easy to address with a few simple steps taken by website owners and developers.
Read More
Isabel Louisa Rawlings

What Is JavaScript And Why Should You Care If You Own A Website?

15/08/19 12:31

 

What is JavaScript?
JavaScript is essentially a scripting programming language that allows you to implement complex items onto your webpage. Every time a webpage becomes interactive with the user, e.g interactive maps, videos, countdown timer and music, and even colours, chances are JavaScript is involved. Facebook is a great example of how JavaScript works smoothly and effectively, with videos playing smoothly, perfect animation and constant post updates.

Read More
Isabel Louisa Rawlings

The Potential Risks Of Exposed Admin Login Panels

06/08/19 11:00

Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or unpatched vulnerabilities.

While this is not an immediate threat, an exposed and obvious administrative login panel can make it significantly easier for attackers to breach the site, especially if access controls are limited to username and password combinations alone. This situation allows for simple brute forcing, signing in with compromised credentials/obtaining credentials, or in the case of unpatched systems, access by exploiting vulnerabilities. Even in cases where the admin login panel URL is complex and hard to guess, path disclosure vulnerabilities can be used to locate it.

Read More
Isabel Louisa Rawlings

Top Questions To Ask Your Web Developer

04/09/19 11:49

Choosing a web developer can be a tricky task but ensuring you find the right one, who will maintain a secure (as well as beautiful) website, is key. We have compiled a list of top security-related questions you should ask your web developer to ensure they are going to protect your website.


Read More

The Growing Scourge of ATM Cash-Outs

20/08/19 10:51

Over the past three years, Foregenix has seen an unprecedented rise in successful attacks against banks that issue payment cards. This has resulted in hard currency ending up directly in criminals hands. Many banks are oblivious to the risks, even though there have been significant alerts from government agencies, leading card brands, cybersecurity vendors and press around these ATM cash-outs. Bank’s card management and processing environments are being targeted.

Read More
Benjamin Hosack

Supporting the Magento Community

19/08/19 13:41

Protecting your Magento Website is SIMPLE

Our forensic statistics show that Magento websites are being targeted by criminals - it is a growing problem affecting a large number of businesses - BUT it is a problem that is easy to address with a few simple steps taken by website owners and developers.
Read More
Isabel Louisa Rawlings

What Is JavaScript And Why Should You Care If You Own A Website?

15/08/19 12:31

 

What is JavaScript?
JavaScript is essentially a scripting programming language that allows you to implement complex items onto your webpage. Every time a webpage becomes interactive with the user, e.g interactive maps, videos, countdown timer and music, and even colours, chances are JavaScript is involved. Facebook is a great example of how JavaScript works smoothly and effectively, with videos playing smoothly, perfect animation and constant post updates.

Read More
Isabel Louisa Rawlings

The Potential Risks Of Exposed Admin Login Panels

06/08/19 11:00

Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or unpatched vulnerabilities.

While this is not an immediate threat, an exposed and obvious administrative login panel can make it significantly easier for attackers to breach the site, especially if access controls are limited to username and password combinations alone. This situation allows for simple brute forcing, signing in with compromised credentials/obtaining credentials, or in the case of unpatched systems, access by exploiting vulnerabilities. Even in cases where the admin login panel URL is complex and hard to guess, path disclosure vulnerabilities can be used to locate it.

Read More