Cybersecurity Insights

Benjamin Hosack

Data Breach Liabilities - PCI Penalties, GDPR and a Warranty

27/03/19 14:19

Data breaches seem to be a regular feature in the news nowadays, especially since GDPR regulation kicked in last year. This higher frequency of articles announcing newly-hacked-victim-organisations gives an idea of the growing scale of the security problem - a trend that we have been talking and warning about for years.

Organisations particularly at risk of compromise are online businesses - eCommerce websites. In fact eCommerce websites are currently the most targeted type of organisation within the Payment Card Industry - simply because the crime is so much easier to execute. The reward for criminals is not as high as targeting a bank, but the crime is a lot easier to pull and scale too.

Read More
Kirsty Trainer

Highest Profile Hacks in 2018

22/01/19 17:27

Well-known companies such as British Airways, Marriott Hotels, and Facebook were breached in 2018, with the majority of them having lost a significant number of user records. We've compiled some of the highest profile breaches witnessed throughout the year.

 

Read More
Ewan Gardner

Serious Vulnerability Discovered in Adminer database Administration Tool

18/01/19 17:19

Foregenix are warning all their partners this morning about a vulnerability discovered in the popular
database administration tool Adminer, affecting versions up to and including v4.6.2. The vulnerability
was discovered by security researchers Yashar Shahinzadeh and more recently Willem de Groot,
who publicised the potential impact to eCommerce sites using the software.

Read More
Paul Taylor

Foregenix Identify Multiple Dell EMC RecoverPoint Zero-Day Vulnerabilities

21/05/18 09:14

Foregenix is disclosing six vulnerabilities which were identified in Dell EMC RecoverPoint products during a recent engagement.

Read More
David Kirkpatrick

Know Your Attack Surfaces

02/05/18 14:22

During our engagements, we sometimes find customers have difficulty in determining what hosts they own and if they are live on the Internet. This can easily happen when you have a high turnover of networking staff, where the knowledge is not passed on, or you have a large infrastructure presence that can make it difficult to constantly manage/monitor. In a worst-case scenario, this can lead to compromise of data and possible exploitation of your internal network where ‘forgotten’ hosts are left unpatched and unmanaged.

Read More
Benjamin Hosack

Data Breach Liabilities - PCI Penalties, GDPR and a Warranty

27/03/19 14:19

Data breaches seem to be a regular feature in the news nowadays, especially since GDPR regulation kicked in last year. This higher frequency of articles announcing newly-hacked-victim-organisations gives an idea of the growing scale of the security problem - a trend that we have been talking and warning about for years.

Organisations particularly at risk of compromise are online businesses - eCommerce websites. In fact eCommerce websites are currently the most targeted type of organisation within the Payment Card Industry - simply because the crime is so much easier to execute. The reward for criminals is not as high as targeting a bank, but the crime is a lot easier to pull and scale too.

Read More
Kirsty Trainer

Highest Profile Hacks in 2018

22/01/19 17:27

Well-known companies such as British Airways, Marriott Hotels, and Facebook were breached in 2018, with the majority of them having lost a significant number of user records. We've compiled some of the highest profile breaches witnessed throughout the year.

 

Read More
Ewan Gardner

Serious Vulnerability Discovered in Adminer database Administration Tool

18/01/19 17:19

Foregenix are warning all their partners this morning about a vulnerability discovered in the popular
database administration tool Adminer, affecting versions up to and including v4.6.2. The vulnerability
was discovered by security researchers Yashar Shahinzadeh and more recently Willem de Groot,
who publicised the potential impact to eCommerce sites using the software.

Read More
Paul Taylor

Foregenix Identify Multiple Dell EMC RecoverPoint Zero-Day Vulnerabilities

21/05/18 09:14

Foregenix is disclosing six vulnerabilities which were identified in Dell EMC RecoverPoint products during a recent engagement.

Read More
David Kirkpatrick

Know Your Attack Surfaces

02/05/18 14:22

During our engagements, we sometimes find customers have difficulty in determining what hosts they own and if they are live on the Internet. This can easily happen when you have a high turnover of networking staff, where the knowledge is not passed on, or you have a large infrastructure presence that can make it difficult to constantly manage/monitor. In a worst-case scenario, this can lead to compromise of data and possible exploitation of your internal network where ‘forgotten’ hosts are left unpatched and unmanaged.

Read More