Sponsor: Reflectiz

In today's digital world, web skimming—also known as Magecart attacks—is a growing threat. This exclusive webinar from Reflectiz gives you a firsthand account of the challenges, impacts, and lessons learned from a Magecart attack on Leeds United Football Club's retail web store.

Hear directly from Graham Peck, IT Information Security & Compliance Manager at Leeds United, as he discusses how the team discovered the breach, the immediate steps they took, and how they now use Reflectiz to proactively protect their digital assets.

Key Takeaways from the Webinar

• The Attack: A vulnerability in a third-party product, which was assumed to be secure, allowed malicious code to be injected into an API, leading to a Magecart skimming attack.
• The Impact: The breach resulted in an immediate website shutdown, a significant impact on transactions and revenue, and a loss of customer confidence
• The Solution: Leeds United moved from a reactive, tool-heavy approach to a proactive, centralized security strategy. By consolidating their security systems and gaining visibility with an agentless tool like Reflectiz, they can now identify risks and interact with suppliers more effectively.

In today's digital landscape, websites are more complex than ever, relying on dozens of third-party applications and trackers to maximize business potential. However, this growing reliance introduces critical vulnerabilities that are often invisible to standard security controls. The result? Your web threat exposure is likely much larger than you think.

Key Findings and Best Practices:

• Industry Risk Levels: Industries like Government, Healthcare, and Finance have the lowest average risk exposure, while Entertainment and Retail face the highest risks.
• Risk Factors: The excessive use of tracking tools is a major contributor to risk, accounting for 53% of all exposures in the Retail sector. Other significant factors include third-party apps accessing sensitive data without justification and running in payment iframes.
• The Human Factor: Marketing and Digital teams are responsible for 50% of web exposure risks, followed by IT at 37%.
• Best Practices for Mitigation: To reduce risk, you should minimize third-party reliance, avoid loading apps on sensitive pages, and continuously monitor your web exposure.

Third-party tracking technologies, like the TikTok pixel, are a common part of digital marketing today. But what happens when these tools, designed to help you, expose your business to severe security and privacy risks?

What You'll Discover in This Case Study:

• The Problem: Learn how a global travel agency's ambition to target the Gen Z demographic on TikTok led to a critical privacy breach due to a misconfigured pixel.
• The Discovery: See how the Reflectiz platform's automated system identified the misconfigured pixel and its illegal activities, proving the value of continuous, automated monitoring.
• The Solution: Understand the swift mitigation steps taken to address the breach and how the company continues to use the TikTok pixel with confidence, thanks to Reflectiz's continuous monitoring.