NormShield Blog

Popular Video-Sharing Platform Hit by Credential-Stuffing Attack

Popular Video-Sharing Platform Hit by Credential-Stuffing Attack

The popular video-sharing platform, DailyMotion, released an announcement on January 25 about a persistent attack on their system. It is an ongoing attack where attackers use previously compromised username/password combinations. The press release read: “The attack consists in “guessing” the passwords of some dailymotion accounts by automatically trying a large number of combinations, or by […]

Magecart attackers

An Attack on 3rd-Party Advertising Company Increased Cyber Risk of European E-Commerce Sites

A malicious code injected to a third-party Javascript of an advertising agency targets credit card information of online shoppers at European-based e-commerce sites. Many websites leverage Javascripts to track their visitors, collect analytics, etc. So, use of a Javascript library of an advertising agency is not uncommon. External Javascripts that run at your website pose […]

Top 3 Types of Third Party Caused a Data Breach

Top 3 Types of Third Party Caused a Data Breach

3rd-party (aka supply-chain) cyber attacks were one of the main reasons for major data breaches in 2018.  As NormShield, we regularly monitor, list, and analyze third-party data breaches. In our recent report, NormShield Major Third-Party Data Breaches of 2018, we provide a  recap of 3rd-party data breaches that hit the news in 2018. Third-party breaches […]

The 10 Most Promising Cybersecurity Solution

Normshield Recognized on The 10 Most Promising Cybersecurity Solution Providers List

Normshield Recognized by CIOReview Magazine on 10 Most Promising Cybersecurity Solution Providers List of 2018. “CIOReview has shortlisted the most cutting-edge solutions that offer tailor-made and efficient solutions for cybersecurity”. The annual list consists of 10 companies at the forefront of providing cybersecurity solutions and impacting the industry. CIO Review featured Normshield’s unique capability of […]

Annual reports

Hold Your Annual Reports for Late Massive Data Breaches; Quora and Marriott

Around this time of the year, many cybersecurity-related companies gather their statistics to publish annual reports for cyber events for the year. However, massive data breaches (such as Quora and Marriott) that hit the news in the early days of December do not let them wrap-up those reports. Some of them are candidates of the […]

Major third-party breaches revealed in November 2018

Major Third-Party Breaches Revealed in November 2018

A recent survey conducted by Ponemon Institute reveals that 56% of companies have experienced a 3rd-party breach in 2017, which is an increase of 7% compared to previous year. Data breaches caused by third parties cost millions of dollars to large companies. Third-parties include broad range of companies a company directly worked with such as […]

Phishing Domain

Are There Any Domains Impersonating Your Company For Phishing?

Learn with Normshield Free Phishing Domain Search. Jack, a manager in a major company called, receives an e-mail from his company to check out his updated salary for the next term. Jack, expecting a raise, excitedly clicks the link in the e-mail. The link forwards him to company’s employee login page and he enters […]

Black Friday Special

Black Friday Special: Potential Phishing Sites Have Quadrupled in The Last 6 Months

Every year, Black Friday shopping shift to online stores rather than conducting old traditions such as camping just outside of the stores and rushing to gates. Online stores are easier to shop, search among different types of items, and get the Black Friday Specials. While “less in-store shopping on Black Friday” becomes a trend, US […]

Third-party attack on cryptocurrency exchange

Third-Party Attack on Cryptocurrency Exchange

One of the largest cryptocurrency exchange,, was targeted by a third-party, aka supply-chain attack. The attackers inserted a malicious code to a Web Analytics tool, called StatCounter, to steal bitcoins from A sophisticated attack with one goal; BTC theft As the latest ESET research reveals thedetails on the attack, we see that it […]