e-commerce security

ecommerce security

E-Commerce Security 101: Key Threats and Best Practices

| | Cybersecurity, e-commerce security
With the advent of e-commerce, businesses have undergone a seamless transformation allowing them to reach customers directly and ensure doorstep deliveries. While shoppers enjoy the convenience and efficiency that comes... The post ...
Strobes Security
SSRF Payload Attack

Penetration Testing for Server-Side Request Forgery (SSRF) in E-commerce Platforms

| | e-commerce, e-commerce security, Network Security, Penetration Testing, pentesting, SSRF
E-commerce platforms are highly vulnerable to various security threats, and one of the most critical vulnerabilities is Server-Side Request Forgery (SSRF). SSRF is an attack technique that enables an attacker to make ...
WeSecureApp :: Simplifying Enterprise Security
R3NIN Sniffer Toolkit – A Complete Guide to New Sniffer

R3NIN Sniffer Toolkit – A Complete Guide to New Sniffer

| | credit card fraud, cyber attacks, cyberthreats, e-commerce security, Network Security, VAPT, VAPT services
Introduction Digitization is advancing along with technology, and online credit card purchases are commonplace. A set of network analysis and sniffing tools is included in the R3NIN Sniffer toolkit. It is made ...
Kratikal Blogs
“Uncover the Hidden Flaws in Your E-commerce Business – Secure Your Future Today!”

“Uncover the Hidden Flaws in Your E-commerce Business – Secure Your Future Today!”

| | Business, CERT-In, e-commerce security, hidden flaws, logic flaws, online fraud, Penetration Testing, VAPT
Introduction E-commerce has dominated our lives in the current digital era, and many of us rely on it to fulfill our everyday shopping demands. The risk of business logic problems, which can ...
Kratikal Blogs
IDOR Vulnerabilities in E-commerce Applications

5 High-Risk Vulnerabilities In E-Commerce Applications

| | e-commerce application security, e-commerce security, VAPT, vulnerability assessment, Web Application Security, web application vulnerabilities
In today’s world, where virtual lives are taking over the real ones, the only way for a business to thrive is by establishing an online presence. With more and more retail stores ...
Kratikal Blogs
fraud e-commerce E-Retailers: Stay Secure

The Art (and Math) of Balancing CX With Fraud Prevention

| | Card Not Present Fraud, e-commerce security, retail
The balancing act between generating revenue, preventing fraud and delivering a good customer experience has never been more challenging for e-commerce merchants. U.S. retail e-commerce will grow by 18% in 2021 as ...
Security Boulevard
WeLeakInfo’s website after the hack

Instant Justice: WeLeakInfo Hacked with a Ex-domain Reuse Attack

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
Expired domains (ex-domains) have always been easy targets for hackers and cybercriminal groups. The bad news is that this trend is not going away anytime soon. In a bizarre turn of events, ...
Blog – Reflectiz
A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
23 NYCRR 500, also known as NYDFS Cybersecurity Regulation, is a law issued by the New York State Department of Financial Services (NYDFS) that mandates the enforcement of optimal data security standards ...
Blog – Reflectiz
In Retrospect: The SolarWinds Attack

In Retrospect: The SolarWinds Attack

| | attacks, Blog, Client-Side Attack, Client’s Side Risks, e-commerce security, Insights, JavaScript code, Magecart, SolarWinds, solarwinds attack, Supply Chain Attacks, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
The recently exposed SolarWinds supply chain attack is one of the biggest cybersecurity events in recent memory. It created a ripple effect that will be felt for years to come on a ...
Blog – Reflectiz
The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

| | attacks, BA breach, Blog, Client’s Side Risks, Credit Card Skimmers, e-commerce security, Insights, Magecart, third-party application security, third-party breach, Ticketmaster
Ticketmaster UK, a leading ticketing company and part of Ticketmaster, has been fined £ 1.25 million by the Information Commissioner’s Office (ICO) as it failed to protect customer data during the infamous ...
Blog – Reflectiz
Load more