Homepage
Open in app
Sign inGet started

Insights, thoughts and technical analysis about third-party application security and beyond.

In the courtesy of Reflectiz

CSP, the Right Solution for the Web-Skimming Pandemic?

CSP, the Right Solution for the Web-Skimming Pandemic?

I’ve been asked a lot about Content Security Policy (CSP) as a possible solution for Magecart and other web-skimming attacks lately…
Go to the profile of Idan Cohen
Idan Cohen
Nov 25, 2020
Top Enterprise Websites Are Actively Port Scanning End-users’ Computers

Top Enterprise Websites Are Actively Port Scanning End-users’ Compu...

Learn how and why eBay is port scanning its users
Go to the profile of Idan Cohen
Idan Cohen
Sep 3, 2020
Hunting Sunburst (Solorigate) — Looking Beyond the Logs

Hunting Sunburst (Solorigate) — Looking Beyond the Logs

It is not often that one resorts to a deep dive into a malware’s decompiled code in the process of determining whether or not his network…
Go to the profile of Yoav Elata
Yoav Elata
Dec 19, 2020
Zerologon (CVE-2020–1472) — Turning Microsoft’s Patch to a Snort Rule (and a little extra)

Zerologon (CVE-2020–1472) — Turning Microsoft’s Patch to a Snort Rule (and a little extra)

Introduction
Go to the profile of Yoav Elata
Yoav Elata
Oct 19, 2020
The Cybersecurity Effects of Fourth-Parties on Websites

The Cybersecurity Effects of Fourth-Parties on Websites

Fourth party apps on websites are commonly referred to as “the vendor’s vendor code”. Fourth-party apps may offer additional benefits, but…
Go to the profile of Raanan Azoulai
Raanan Azoulai
Aug 27, 2020
The Gocgle Malicious Campaign

The Gocgle Malicious Campaign

Can You Spot the Difference Between Gocgle and the Real Thing? Read our special report about Gocgle malicious campaign.
Go to the profile of Idan Cohen
Idan Cohen
Jul 5, 2020
About ReflectizLatest StoriesArchiveAbout MediumTermsPrivacy