Security Blog

Cross site scripting

Cross site scripting: what do you need to know about it?

Cross site scripting Cross Site Scripting or XSS is a particular form of injection attack. Basically, attackers inject malicious scripts into a website. The attackers typically use web applications to transmit malicious codes, usually browser side scripts, to a different end user. In return, the web applications in a system generate output in response to the malicious input

Privacy policy

Privacy policy: what is its content according to the GDPR?

Privacy policy in the GDPR GDPR defines the content of the privacy policy that needs to be provided to the data subject in articles 13 and 14. These articles cover the following scenarios: “Information to be provided where personal data are collected from the data subject” “Information to be provided where personal data have not been obtained

Personal data

Personal data: GDPR and data explanation

Personal data: what does GDPR say? In the first paragraph of the art. 9 of GDPR (General Data Protection Regulation) there is a definition of personal data. Attached to this definition, you can find the prohibition of processing such data: “Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade

Network scanning

Network scanning: why is it so important?

No matter how confident you are about your network safety, you can never be completely sure. This is why network scanning is so important. The kind of malicious attacks that are carried out these days are hard to believe. A vulnerable network can cause a big problem to systems and cause a huge loss in terms of business value. Hence,

Regular and systematic monitoring

Regular and systematic monitoring: what does it mean?

Regular and systematic monitoring What does regular and systematic monitoring mean? GDPR does not provide a specif definition. However, Recital 24 considers the “monitoring of the behaviour of data subjects” including in this concept every form of online profiling (even for behavioral marketing purposes). Such definition, in any case, does not only include the internet: we must

GDPR Plugin Swascan

GDPR Plugin: Swascan offers a free tool for Compliance

GDPR Plugin: Swascan for Compliance Swascan provides to their partners an innovative plugin. It is focused on the GDPR Compliance of WordPress and Woocommerce websites, you can download it at the following link: Swascan GDPR Plugin. Swascan GDPR plugin allows whoever installs it to face GDPR-related issues in terms of websites. Download Swascan GDPR Plugin Swascan GDPR plugin is now