Category: Data Breach Page 1 of 5

The Top 3 OWASP Threats Your Business Should Address Today

By

On January 24, 2020

In Cyber Attacks, Data Breach, Small Business

If you’re a small business owner looking to boost your cybersecurity efforts, you’ve likely come across the term “OWASP Top 10.” The Open Web Application Security Project, or OWASP, is a nonprofit group of cybersecurity experts who aim to make cybersecurity resources easily accessible to any business or individual interested in learning about the risks that exist online today. 

The OWASP Top 10 is a list of the most critical web application security risks that anyone with a website should know about, and it’s an especially great resource for small and midsize businesses (SMBs). SMBs tend to have less budget and fewer resources available to defend against cyberattacks, so they’ve become a popular target for bad actors. The OWASP Top 10 list can help pinpoint possible vulnerabilities to help establish your cybersecurity priorities.

However, there are three threats from the OWASP Top 10 list that we think SMBs should know about and address immediately. Keep reading to learn more about these threats, as well as tips for securing your business against them.

Read More

A Small Business Owner’s Guide to Preventing SQL Injection Attacks

By

On December 5, 2019

In Cyber Attacks, Data Breach

SQL injection is such a common tactic in cybercrime that it’s been named a top security threat by the OWASP Top 10, a powerful awareness document representing the most critical security risks to web applications. If you’re not protecting your website from this type of attack, your business and customers are at risk.

So what is an SQL injection attack, and why is this method so popular among professional and amateur cybercriminals?

Read More

What Is a Backdoor Attack?

By

On November 14, 2019

In Cyber Attacks, Data Breach, Small Business

A backdoor attack is a type of malware that gives cybercriminals unauthorized access to a website. Cybercriminals install the malware through unsecured points of entry, such as outdated plug-ins or input fields. Once they enter through the back door, they have access to all your company’s data, including customers’ personal identifiable information (PII).

As the name suggests, a backdoor attack is stealthy, and cybercriminals often slip in undetected.

Read More

Breached on Black Friday? 56% of Consumers Won’t Return Until After Christmas

By

On November 6, 2019

In Cyber Attacks, Data Breach, Small Business, VPN

The holidays are just around the corner, and with it comes the inevitable holiday shopping rush. In fact, holiday shopping can account for up to 30 percent of annual sales for online retailers.  As Black Friday kicks off what is expected to be another lucrative online holiday season, there are vast opportunities for cybercriminals to steal shopper’s information through spoofed websites, malicious coupon code links, and phishy marketing campaigns. Any downtime resulting from an attack can severely impact holiday profits, not to mention annual revenue. This time of year, it’s more important than ever that ecommerce businesses make cybersecurity a top priority in order to protect their website, customers, and bottom line.

Additionally, consumers should be aware of the risks that exist online to defend their information proactively. Being cyber-aware while shopping online is the new reality for consumers, and it becomes even more imperative during the holiday season. 

Read More

Our Top 3 Tips for Preventing Ransomware Attacks

By

On October 17, 2019

In Cyber Attacks, Data Breach

Modern cybercriminals have an array of weapons in their cyber arsenals. As technology evolves, their tools and methods continue to become more sophisticated. Ransomware is among these weapons — and it poses a significant threat. Cybersecurity Ventures estimates that a ransomware attack targets a business every 14 seconds, and that number will fall to 11 seconds by 2021. Because no business is too small to become the target of a ransomware attack, it’s important to understand how to proactively defend your organization.

Read More

5 Steps to Building a Foolproof Cybersecurity Incident Response Plan

By

On August 26, 2019

In Data Breach, SiteLock News

No matter what industry you’re in, there’s a good chance that you conduct a lot of your business online. Most modern small businesses have one or more digital properties, including a website and various social media pages. Your website may or may not be your chief sales portal, but it’s usually the first place prospective customers go to learn about your brand, making it a vital asset.

Read More

The Ultimate Incident Response Plan Checklist

By

On July 30, 2019

In Data Breach, SiteLock News

How do you resolve a cyberattack as quickly and completely as possible? A cyber incident response plan is designed to answer that question. The plan kicks in immediately after an attack and outlines exactly how your company will use its resources to minimize the damage and overcome the incident. In as much detail as possible, it describes who will be involved, what individuals’ roles will be, and which procedures they will need to follow.

Read More

How You Should Respond Internally to IT Security Incidents

By

On July 18, 2019

In Data Breach, SiteLock News

In a single day, websites experience, on average, nearly 60 cyberattacks. And for small businesses, successful attacks can have a lasting impact: 60% of small businesses will go out of business following a successful breach due to the costs of recovery.

In this article, we’ll talk about IT security incidents, which are events that indicate an organization’s systems or data have been compromised or that existing cybersecurity measures have failed. The key to staying afloat during an IT security incident is preparation — and effective communication is a major component in that. Knowing how to communicate transparently, both internally and externally, in the wake of an attack not only builds trust with your employees but also helps protect your reputation.

Read More

Types of Cybersecurity Threats Your Incident Response Plan Should Include

By

On July 10, 2019

In Cyber Attacks, Data Breach

Cybersecurity threats aren’t going away anytime soon. In fact, our annual security report illustrates that the number of daily website attack attempts increased by 59% between January 2018 and December 2018. This increase shows that cybercriminals are not only deploying attacks more often, but also using automation technology to do so. 

The good news? These attempts appear to be getting less successful. Of the 6 million individual websites that we analyzed, only 60,000 were actually compromised following an attack attempt, indicating that website security tools are getting better at fending off attacks.

Read More

The Financial Impact of Cyber Attacks is Greater Than You Think

By

On June 26, 2019

In Cyber Attacks, Data Breach

Here’s a common scenario: You receive a notification saying your small business website has been hit with a cyberattack. Suddenly, the web host has suspended your site, and you’ve been blacklisted from major search engines because your site poses a risk to visitors. Essentially, your website turns invisible.

Amid the chaos, you need to understand and fix the problem. Many small businesses rely on contracted web developers, who, in turn, rely on someone else for cybersecurity. The security provider needs to get involved immediately because the longer the problem persists, the worse the damage becomes.

Read More

Page 1 of 5

Next →

Categories

Archives

SiteLock Blog Topics

botnet Case study community interview Content Delivery Network (CDN) Cross-Site Scripting (XSS) cybercrime cybersecurity laws data privacy data protection data security DDoS Attack Drupal ecommerce event recap Hosting Provider how to Internet of Things (IoT) Joomla malvertising malware Malware removal Malware Scanner national cybersecurity awareness month (NCSAM) password security PCI Compliance phishing protect your online business ransomware recap Safe Holiday Shopping Security Updates SiteLock events SiteLock reviews SQL Injection (SQLi) Target Vulnerabilities vulnerability web application firewall (WAF) web application security website scanning website security Website Security Insider WordCamp wordcamp recap wordpress

Quick Links

SiteLock.com