Author: Monique Becenti Page 1 of 5

What Is Malvertising and How Do You Prevent It?

By

On December 12, 2019

In SiteLock News

Did you know that a malicious advertisement could look exactly the same as a legitimate one?

Malware is constantly changing as cybercriminals look for new methods to wreak havoc on website owners and visitors. One of their main tactics is malvertising — tricking visitors into downloading malware disguised as online ads — which can cause problems for both your business and customers. Cybercriminals carry out malvertising cyberattacks in two ways: They either inject malicious code into legitimate digital ads, or they create fake ads and distribute them through ad networks.

It’s easy for an end-user to fall victim to a malvertising attack. Because these devious ads have the same look and feel as legitimate ones, the illicit ads can slip by security checks during the approval process. Once someone clicks the infected ad, it starts a malicious download process and ultimately infects the user’s computer.

Read More

A Small Business Owner’s Guide to Preventing SQL Injection Attacks

By

On December 5, 2019

In Cyber Attacks, Data Breach

SQL injection is such a common tactic in cybercrime that it’s been named a top security threat by the OWASP Top 10, a powerful awareness document representing the most critical security risks to web applications. If you’re not protecting your website from this type of attack, your business and customers are at risk.

So what is an SQL injection attack, and why is this method so popular among professional and amateur cybercriminals?

Read More

How to Prevent Cross-Site Scripting Attacks

By

On November 21, 2019

In Cyber Attacks

In November 2018, security researchers from Check Point made an interesting discovery about the wildly popular game “Fortnite” — the website was vulnerable to cross-site scripting attacks. Thanks to an old, unsecured webpage, researchers found out that potential hackers could gain unauthorized access to users’ accounts, in-game currency, and audio recording capabilities — all without ever needing their login information.

The cross-site scripting attacks that dominate headlines tend to be larger-profile cases with big-name companies; in reality, businesses of all sizes can fall victim to this kind of cyberattack. In fact, cross-site scripting attacks account for 31% of all attacks — making it the most common type of attack (followed by SQL injection at 20%).

Read More

What Is a Backdoor Attack?

By

On November 14, 2019

In Cyber Attacks, Data Breach, Small Business

A backdoor attack is a type of malware that gives cybercriminals unauthorized access to a website. Cybercriminals install the malware through unsecured points of entry, such as outdated plug-ins or input fields. Once they enter through the back door, they have access to all your company’s data, including customers’ personal identifiable information (PII).

As the name suggests, a backdoor attack is stealthy, and cybercriminals often slip in undetected.

Read More

Breached on Black Friday? 56% of Consumers Won’t Return Until After Christmas

By

On November 6, 2019

In Cyber Attacks, Data Breach, Small Business, VPN

The holidays are just around the corner, and with it comes the inevitable holiday shopping rush. In fact, holiday shopping can account for up to 30 percent of annual sales for online retailers.  As Black Friday kicks off what is expected to be another lucrative online holiday season, there are vast opportunities for cybercriminals to steal shopper’s information through spoofed websites, malicious coupon code links, and phishy marketing campaigns. Any downtime resulting from an attack can severely impact holiday profits, not to mention annual revenue. This time of year, it’s more important than ever that ecommerce businesses make cybersecurity a top priority in order to protect their website, customers, and bottom line.

Additionally, consumers should be aware of the risks that exist online to defend their information proactively. Being cyber-aware while shopping online is the new reality for consumers, and it becomes even more imperative during the holiday season. 

Read More

How to Stop Phishing Attacks in Their Tracks

By

On October 31, 2019

In Cyber Attacks

In the world of cybersecurity, the looming menace of advanced persistent threats and state-sponsored attack groups tend to dominate the headlines. However, research indicates that phishing attacks are the most common threat — by far.

Microsoft’s “Security Intelligence Report, Volume 24” shows a 250% increase in the number of phishing attacks since 2018. If you think the primary victims of email-related breaches are large corporations with vast amounts of data, think again. Small and mid-size businesses are now the preferred target of cybercriminals, and these organizations have a lot to lose. In fact, 60% of them fail within six months of a cyberattack.

To avoid becoming a victim, it’s critical to prevent phishing attacks.

Read More

Why Business Growth Should Mean Cybersecurity Growth

By

On October 24, 2019

In Small Business

Your small business is growing fast. That’s good news! But rapid growth also presents new challenges. Perhaps most importantly, as sales and website traffic increase, you become a more attractive target for cybercriminals.

At SiteLock, we developed a proprietary risk score based on over 500 variables to help website owners gauge the overall risk of their sites on a scale from low to high. Each of the variables can be grouped into three main categories: a site’s complexity, its popularity, and its composition. In general, the more variables a site has, the higher the risk level. Those websites deemed high risk are 26 times more likely to experience a breach.

Read More

Our Top 3 Tips for Preventing Ransomware Attacks

By

On October 17, 2019

In Cyber Attacks, Data Breach

Modern cybercriminals have an array of weapons in their cyber arsenals. As technology evolves, their tools and methods continue to become more sophisticated. Ransomware is among these weapons — and it poses a significant threat. Cybersecurity Ventures estimates that a ransomware attack targets a business every 14 seconds, and that number will fall to 11 seconds by 2021. Because no business is too small to become the target of a ransomware attack, it’s important to understand how to proactively defend your organization.

Read More

How to Stop a DDoS Attack on Your Website

By

On October 10, 2019

In DDoS

In a matter of minutes, a distributed denial-of-service — or DDoS — attack can bring your website traffic to a grinding halt.

In the past, these attacks were more of an annoyance than a serious threat, but this has changed. DDoS attacks are growing in both size and frequency. Major attacks saw a 967% increase between the first quarter of 2018 and the first quarter of 2019. Recovering from an attack like this could cost a small business hundreds of thousands of dollars.

Read More

A Guide to Website Defacement Prevention

By

On September 19, 2019

In Cyber Attacks

Much like graffiti in the physical world, website defacement attacks can leave a visible mark on your digital property. In carrying out this type of attack, cybercriminals typically replace existing content on your site with their own messages — whether those messages are intended to be political, religious, or simply shocking.

As a small business owner, you know that your website is a critical component of your business. It provides prospective customers with first impressions of your company and may even serve as a digital storefront. A defacement attack that makes visitors turn around and leave could have lasting consequences on your business. 

Read More

Page 1 of 5

Next →

Categories

Archives

SiteLock Blog Topics

botnet Case study community interview Content Delivery Network (CDN) Cross-Site Scripting (XSS) cybercrime cybersecurity laws data privacy data protection data security DDoS Attack Drupal ecommerce event recap Hosting Provider how to Internet of Things (IoT) Joomla malvertising malware Malware removal Malware Scanner national cybersecurity awareness month (NCSAM) password security PCI Compliance phishing protect your online business ransomware recap Safe Holiday Shopping Security Updates SiteLock events SiteLock reviews SQL Injection (SQLi) Target Vulnerabilities vulnerability web application firewall (WAF) web application security website scanning website security Website Security Insider WordCamp wordcamp recap wordpress

Quick Links

SiteLock.com