Blog

Odds are your web app or website will be the first impression of your business. 88 percent of people conduct online research before engaging with a company. Furthermore, three out of four people judge an organization's credibility based upon on its website and 80 percent of consumers believe a company's online experience is as important as its products or services.

The security world is always changing and the latest news is the Capital One data breach affecting the personal information of over 100M customers. Recently, the world learned about the indictment of Paige Thompson, resulting from alleged activities where she was able to break into and obtain large caches of data from servers operated by the financial giant.

Security news this week highlighted the discovery of a credential stuffing attack against State Farm Insurance. According to a document posted online, it appears that the organization is currently notifying its customers following the discovery of an attack in July 2019.

If API security isn’t on your list of top web security priorities for the future — it should be.

I recently presented a webinar on 7 common web application security attacks and what organizations can do to protect themselves. During one section, I spoke about botnets and their role in distributed denial-of-service attacks. I referenced an attack against a prominent IT security researcher, Brian Krebs, presumably initiated by people who didn’t necessarily agree with what he was writing about.

Migrating to the cloud once gave companies a competitive advantage. Now, it’s a critical step for businesses who wish to remain successful. Reduced costs, increased productivity, data compliance, and disaster recovery are just a few of the many reasons 77 percent of businesses have some or all of their enterprise computing infrastructure in the cloud. 

Within the eCommerce world, Magecart attacks have far reaching consequences, from credit card fraud to substantial brand damage. Magecart is the name given to sophisticated hacking groups that employ a specific type of web skimming attack, which injects malicious JavaScript into a website by exploiting a hole within the website code itself, or by infiltrating a third-party tag.

Bots are often thought of as inherently bad. However, bots can also work to your advantage to improve web experience. These automated scripts perform tedious yet essential tasks, such as indexing web pages, and improve operational efficiency by answering basic questions via online chat.