The 2018 Winter Olympics got off to a shaky start this year thanks to a cyberattack. The attack took down the official Olympics website, preventing access to tickets, thus preventing many ticket holders from attending the opening ceremonies. This kind of cyberattack could happen to any size organization at any time. In fact, it could happen to any person at any time. Cybercriminals often hack into individuals’ personal computers, allowing them access to private online assets, like family photos. No matter who you are, it’s important to put together an incident response plan (IRP) to protect your information should a crisis occur. In this week’s episode, our hosts share a few simple steps that anyone can take to create a response plan.
Author: SiteLock Page 8 of 24
Company Also Earns Silver and Bronze Across Additional Categories
We’re excited to announce that SiteLock earned Gold, Silver, and Bronze recognition across multiple categories in the 2018 Cybersecurity Excellence Awards!
SiteLock® INFINITY™ took home the Gold in the Best Website Security category, further reinforcing its reputation and performance as an industry-leading malware and vulnerability detection and remediation solution. As the only product on the market to offer continuous scanning, automatic malware removal and complete automated CMS core security patching, INFINITY offers unparalleled protection in today’s evolving cyber world.
In December, SiteLock introduced its revolutionary new product SMART PLUS – an industry first offering robust open source content management system (CMS) protection. In addition to protecting the three most popular CMS platforms Joomla!, WordPress, and Drupal, SMART PLUS now protects the two most popular eCommerce platforms: WooCommerce and Magento.
A few cybercriminals recently hit the jackpot – literally. “Jackpotting,” a hack that forces ATMs to dispense large amounts of cash on demand, hit the cybercrime scene in a big way, with six reported cases in the United States during the last week of January alone. In other cybersecurity news, exercise tracking app Strava and its public heatmap of user activity raised serious privacy concerns this week. A sharp-eyed student noticed that small, secluded areas of high Strava activity in countries like Syria, Afghanistan, and Somalia could potentially indicate the locations of several US military bases.
Looking for a date in time for Valentine’s Day? If you’re using Tinder, be careful when swiping right. Cybersecurity researchers discovered security flaws in the popular dating app that could allow hackers to discover users’ private data and personal preferences, like the photos of users they’ve swiped right or left on. In other cybersecurity news, a cybercrime “conglomerate” named Zirconium has been found responsible for the largest malvertising operation of 2017. Using a network of 28 fake ad agencies, Zirconium strategically placed ads that led users to malicious websites pushing scams or fake software updates. The campaigns were so successful – and so sneaky – that they generated 1 billion ad views in 2017.
We’re just days into 2018 and cybersecurity already has its first major headline of the year: Meltdown and Spectre. By exploiting common features found in modern microprocessors, cybercriminals have been able to use the attacks known as “Meltdown” and “Spectre” to steal sensitive information from any computer, device, and even the cloud. We’ll walk you through how and why Meltdown and Spectre happened, and which security patches are already available.
We’ll also provide an overview of the principle of least privilege, the concept of restricting user permissions as a preemptive security measure. Join our hosts, security analysts Jessica Ortega and Ramuel Gall, as they provide important tips that everyone, from parents to CTOs, can use to protect themselves from the cybersecurity risks caused by human error.
Want to learn more about how both businesses and individuals can improve their cybersecurity savvy? Check out our past podcasts on endpoint and website security or social media security. For more Decoding Security, subscribe on YouTube, iTunes, or Google Play!
If your New Year’s resolution is to protect yourself from cyberattacks, you’re in luck! This week on Decoding Security, security analysts Jessica Ortega and Ramuel Gall share their predictions for the top cybercrime trends in 2018. Our hosts also identify ways you can arm yourself against these ever-evolving threats. We don’t want to give away their predictions, but we’ll give you a hint: if your holiday gifts included a digital assistant like Amazon Alexa or Google Home, be sure to tune in!
We’ll also catch you up on the latest cybersecurity news, including the 25 Worst Passwords of 2017 and a leaky server that exposed 300,000 email addresses and login credentials from Ancestry.com.
Happy New Year from SiteLock and Decoding Security! Our New Year’s resolution is to continue to bring you a fun and informative podcast, so make sure you keep up by subscribing on YouTube, iTunes, or Google Play!
Patchman, best known for patching application vulnerabilities and helping hosts stop abuse before it begins, is expanding its product offering for the first time since being acquired by SiteLock in July 2017. Patchman, which is based in the Netherlands, was founded in 2015 with the goal of securing CMS applications from the hosting provider level to protect customers who did not update their applications in a timely manner. Up until now, Patchman has focused on the “Big Three” of open source content management systems – WordPress, Joomla!, and Drupal – covering core application vulnerability patches. Now, for the first time, Patchman is expanding their offerings into both ecommerce and plugins – offering patches for Magento core vulnerabilities and WooCommerce vulnerabilities.
2017 was a big year for malware, hacks, and data breaches. Voting machines proved to be easily hackable, Uber was caught paying off cybercriminals, and of course, Equifax experienced a breach that affected 140 million Americans. On the latest episode of Decoding Security, security analysts Jessica Ortega, Ramuel Gall, and producer/security analyst Topher Tebow count down the top ten cybersecurity issues of the past year.