FEATURED

The Potential Risks Of Exposed Admin Login Panels

Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or ...

READ STORY

FEATURED

Threat Alert: Magento Intercept Backdoor and Re-Infection

Our Threat Intelligence Group recently identified an attack through our FGX-Web solution that upon investigation revealed very clever techniques implemented to both breach and reinfect the target ...

READ STORY

FEATURED

Anatomy Of A Magento Attack: Froghopper

Magento is the most popular eCommerce web application in the world, with an estimated 236,000 live websites using the Content Management System (CMS)[1]. Available in both paid-for “enterprise” ...

READ STORY

FEATURED

"Key" to Secure Data - P2PE - Derived Unique Key Per Transaction (DUKPT)

Written by Andrew McKenna, PCI QSA, PCIP at Foregenix The encryption key infrastructure usually used in PCI P2PE solutions is based on the DUKPT (pronounced duck-putt) model. This key hierarchy was ...

READ STORY

FEATURED

Serious Vulnerability Discovered in Adminer database Administration Tool

Foregenix are warning all their partners this morning about a vulnerability discovered in the popular database administration tool Adminer, affecting versions up to and including v4.6.2. The ...

READ STORY

FEATURED

An Overview on Purple Fox

Introduction The trojan known as Purple Fox was first discovered by 360 Total Security on September 25th 2018. At the time of publishing, the statistics they had gathered estimated that over ...

READ STORY