CMSCMS platformsWordPress Is Your Site Secure? CMS Security Tips from a Canadian Forum Hack Sep 19, 2016 by Paul Curran In June 2016, news of a massive hack on the Canada-based forum hosting company VerticalScope spread swiftly around various security blogs and tech news websites. In this attack, hackers were able to steal and leak 45 million records from over 1,000 forums and websites that were included in the VerticalScope network. Amongst their biggest websites, Read More › CMSCMS platformsWordPress
Drupal 7Drupal security analysisSQL InjectionWordPress Panama Papers: The CMS Connection? Apr 11, 2016 by Paul Curran In early April 2016, reports emerged detailing history’s largest data leak, the Panama Papers. This incredible leak of sensitive data concerning both Mossack Fonseca and their clients contained 2.6 TB of data which included 11.5 million documents relating to over 200,000 companies and exposed the hidden fortunes of politicians, dictators and the super-rich. In comparison to Read More › Drupal 7Drupal security analysisSQL InjectionWordPress
CSRFCVEinformation securityKnowledgebasesNVDOWASPWordPressXSS 7 Essential Resource Centers to Boost Your InfoSec IQ Dec 4, 2014 by Sharon Solomon Many applications today possess critical vulnerabilities – SQL injections (SQLi), Cross Site Scripting (XSS) and Cross Site Request Forgery (CSRF) being just a few of them. The first step in combating these security issues is getting to know how they work and learning about them from real life scenarios. Unfortunately, not all developers today are familiar with the Read More › CSRFCVEinformation securityKnowledgebasesNVDOWASPWordPressXSS
CMSDDOSDrupalJoomlaSDLCSSLTLSWordPressXSS The Worrying Security State of CMS Platforms Mar 17, 2014 by Sharon Solomon The use of Content Management Systems (CMS) is on the rise. Over 20% of the top 10,000 websites today rely on CMS platforms, namely WordPress, Drupal and Joomla. But the quick setup and customizable functionality come at a price. Security issues are being exposed and exploited by cybercriminals. Checkmarx’s Research Lab studied the vulnerabilities in Read More › CMSDDOSDrupalJoomlaSDLCSSLTLSWordPressXSS
CTMe-CommercePCISDLCsSDLCSSLWordPress Simple Ways to Boost E-commerce Website Security Feb 26, 2014 by Sharon Solomon The security standards of today’s E-commerce websites are surprisingly low considering the amount of business they conduct. With more and more consumers doing their shopping online, hackings have reached epidemic proportions. InfoSec officials face a tough task, but cybercrime can be countered. Besides educating consumers to practice safe browsing habits and avoid unknown WiFi networks, Read More › CTMe-CommercePCISDLCsSDLCSSLWordPress
CISOCMSForbesSEASyriaWordPressXSS Forbes Hacked By SEA; WordPress Vulnerabilities Exploited Feb 17, 2014 by Sharon Solomon As the Syrian Civil War rages on, cybercrime activity emerging from the troubled state is reaching monstrous proportions. Syrian president Bashar al-Assad may be losing hold on his people, but his loyal hacker-team is continuing to wreak havoc worldwide and exploit numerous high-profile websites and social media accounts. Forbes is the latest victim of the Read More › CISOCMSForbesSEASyriaWordPressXSS
CMS platformsMaty SimanRSAWordPress RSA USA Preview: ‘It’s A Jungle Out There: The Security State of the CMS Platform’ Feb 11, 2014 by Sarah Vonnegut Checkmarx Founder & CTO Maty Siman will be leading a session at the conference this year on the security of the most popular content management systems and how to protect yourself against attacks: It’s a Jungle Out There: The Security State of CMS Platforms February 26th | 10:40 AM | Room 3012 Read More › CMS platformsMaty SimanRSAWordPress