SecurityMetrics Blog

What is Formjacking?

What is formjacking? Formjacking is a type of cyber attack where hackers inject malicious JavaScript code into a webpage form–most often a...
View Post

What is a Managed Firewall and Do You Need One?

Qualified managed security service providers (MSSPs) typically provide a managed firewall service as a solution for firewall operation,...

How Much does GDPR Compliance Cost?

How much does GDPR compliance cost? The answer is more complicated than a basic dollar amount. There are many factors that will scale the cost of...

How to Manage a Healthcare Data Breach

Protect your organization after a healthcare data breach Data breaches can be devastating. Even entities with strict data security and IT policies...

The Importance of Cybersecurity: SecurityMetrics' Free Academy

The importance of cybersecurity: SecurityMetrics Academy is a free educational course designed for anyone who wants to learn about data security.

Securing Mobile Devices with Mobile Encryption

Say you have a tablet that has sensitive information on it, such as card data, personal information, etc. If that tablet is stolen, all that data...

5 Tips to Implement Security Awareness at Your Company

Whether you’re a CIO, the head of IT, or in a non-security-related position, if your data security practices are unclear, your company is at a...

SecurityMetrics GSA Schedule 70 Contract Holder; HACS...

As a GSA Schedule 70 contract holder, SecurityMetrics’ contract–number 47QTCA19D008S–can be found in the GSA elibrary schedule 70, under HACS...

What is Network Security?

Network security consists of the policies, procedures, programs, hardware, software, and people you use to protect your corporate network. Network...

What is HITRUST Compliance?

What is HITRUST? HITRUST stands for the Health Information Trust Alliance. It was founded in 2007 and uses the “HITRUST approach” to help...

Security Trends: Data Breach Statistics from 2018 and...

Data Breach Statistics from 2018 and Predictions for 2019. How did our predictions from 2018 turn out and what you can do in 2019 to avoid a data breach.

Card Data Discovery: Unencrypted Credit Card Data...

Can businesses store credit card information? The short answer is, “yes.” PCI DSS requirement 3 focuses on the protection of stored cardholder...

Blogengine.net Directory Traversal & Listing; Login Page...

A directory traversal, CVE-2019-10717, was identified on BlogEngine.NET applications versions 3.3.7 and earlier through the /api/filemanager...

BlogEngine.NET Directory Traversal + Remote Code execution

A remote code execution (RCE) vulnerability, CVE-2019-10719, was discovered in BlogEngine 3.3.7 and earlier. Leveraging a path traversal in...

BlogEngine.NET XML External Entity Attacks

An Out-of-band XML External Entity attack, CVE-2019-10718, exists on BlogEngine.NET versions 3.3.7 and earlier through the /pingback.axd endpoint....

Need help securing your business?

Request a quote!

We are excited to work with you.

*Required

Thank you!

Your request has been submitted.