Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

August 2024

netwrix

How to Prevent Malware Attacks from Impacting Your Business

Aug 30, 2024 By Dirk Schrader In Netwrix
A robust malware prevention and detection strategy is critical to cyber security and cyber resilience today. After all, a single malware infection can inflict serious financial damage — from business disruptions and remediation costs to lasting reputational damage and customer churn. To help, this blog explains the types of malware organizations need to defend against and the common vectors for deployment.
Read Post
manageengine

Top tips: Notorious session sniffing attacks and tips for avoiding them

Aug 29, 2024 By General In ManageEngine
In cybersecurity, session sniffing—an attack method where attackers receive and use session data—is a recurring danger. The impacts of session sniffing are evident from numerous high-profile assaults. Let’s discuss some of these important cases that highlight the significance of strong security procedures.
Read Post

Supply Chain Attack Fundamentals

Aug 29, 2024 By Indusface In Indusface
Overview: Picture this: Your website included a 3rdparty component (such as a WordPress plug-in), and hackers used that as a backdoor to infiltrate your systems, which were secure on their own. This is a supply chain attack. Pollyfillio attack is a recent example of this where 100,000 websites were impacted last month. In this webinar, Vivekanand Gopalan (VP of Products - Indusface) and Phani Deepak Akella (VP of Marketing - Indusface) discuss strategy and tactics to protect your applications from supply chain attacks.
View Video
safebreach

Voices from Validate: The Role of Breach & Attack Simulation in Cybersecurity Testing

Aug 29, 2024 By SafeBreach In SafeBreach
Security teams have a wide range of tools in their arsenal to combat cybersecurity threats, but the expanding attack surface and the sheer number of tools can make their jobs more difficult to manage. As we enter this new era of cybersecurity, security and risk management, leaders are focused on validating the efficacy of their security investments, improving ROI, and taking a more programmatic approach in order to enhance their efficiency.
Read Post
Rubrik

Rubrik and Cisco to Safeguard Data Against Cyberattacks

Aug 29, 2024 By Ghazal Asif In Rubrik
A Rubrik Zero Labs report found that 66% of IT and security leaders report that data growth outpaces their ability to secure data and mitigate risk. Adversaries are noticing, increasing the sophistication of cyberattacks, and leveraging gaps in coverage to target critical data for destruction, theft, or extortion. As the volume of data continues to grow and exacerbate visibility challenges, organizations must find ways to manage and protect their constantly expanding data.
Read Post
fidelis security

Aligning Visibility for Post Breach Detection and Response with Fidelis Elevate

Aug 29, 2024 By Fidelis Security
In today's day and age, every organization faces many cyber adversaries, and the reality is that you cannot prevent all cyber-attacks. Timely threat detection and response are the only ways to prevent the escalation and spread of attacks. This whitepaper provides insights into seeing more across your environment by aligning visibility.
Get White Paper
devo

Supply Chain Attacks: Infiltrating Organizations Through the Backdoor

Aug 28, 2024 By Devo In Devo
An organization is only as secure as its weakest link — and the software supply chain is most often where the weakest link is found. A supply chain attack is a sophisticated cyberattack where malicious actors compromise a service provider to gain unauthorized access to its end users. Since 2018, the number of organizations impacted by supply chain attacks has increased by 2,600%.
Read Post
datadog

A deep dive into investigating a complex denial-of-service attack

Aug 27, 2024 By Ahmad Mustafa In Datadog
On April 19, 2024, Datadog’s US5 website (app.us5.datadoghq.com) started experiencing elevated error rates, though they were low enough that most of our users didn’t notice them. For the next few days, we worked around the clock responding to multiple episodes of this mysterious attack, which gradually unfolded as we investigated. We also implemented several measures to reduce the impact on our customers.
Read Post
indusface

Formjacking Attacks - How They Work and How to Prevent Them

Aug 26, 2024 By Vinugayathri Chinnasamy In Indusface
Formjacking is a cyberattack where attackers inject malicious JavaScript code into webpages containing form fields, usually on login pages or payment forms. The objective is to steal sensitive information, such as credit card details, passwords, and other personal data, directly from users as they enter it into the compromised forms. Formjacking attack occurs entirely on the client side—within the user’s browser—making it particularly challenging to detect.
Read Post
cato networks

Cato CTRL Threat Actor Profile: Yashechka

Aug 26, 2024 By Etay Maor In Cato Networks
To further raise awareness on threat actor activity in the dark web and hacking communities, today we are introducing the Cato CTRL Threat Actor Profile. This will be a blog series that profiles various threat actors and documents notable activity that we are observing. Our inaugural Cato CTRL Threat Actor Profile is on Yashechka.
Read Post
keeper

How To Mitigate the Risk of Ransomware Attacks

Aug 26, 2024 By Ashley D'Andrea In Keeper
You can mitigate the risk of ransomware attacks by regularly backing up your data, updating your device with the latest software, implementing least-privilege access, using a business password manager and educating employees about security awareness, among other things. Ransomware attacks occur when organizations are prevented from accessing files and data until they’ve paid a ransom to the cybercriminal who infected their devices with malware.
Read Post
memcyco

Top 10 Cyber Risk Assessment Tools

Aug 23, 2024 By Arthur Zavalkovsky In Memcyco
Estimating the potential impact of a successful cyber attack may seem impossible, especially given the rapid expansion of organizations’ digital footprint (and, consequently, their attack surface). One example are attacks which pertain to the contact points between businesses and clients, such as websites and mobile apps. In particular, these assets can be cloned and used for phishing attacks.
Read Post
lookout

Future-Proofing Cybersecurity: 5 Insights from the Verizon MSI

Aug 23, 2024 By Stephen Banda In Lookout
Your organization’s most vulnerable points of attack are no longer desktops — they’re in the pockets of your employees. Virtually everyone has a mobile device. And, even on the job, we use them for a multitude of tasks. As a result, our devices are packed with critical information, making them rich targets for cybercrime. That crime comes at a high cost.
Read Post
keeper

How To Protect Yourself From Identity Theft

Aug 23, 2024 By Ashley D'Andrea In Keeper
You can protect yourself from identity theft by safeguarding your Social Security number and other sensitive documents, regularly reviewing your credit reports, using a dark web monitoring tool and not oversharing online. Identity theft occurs when someone steals and uses your sensitive documents unbeknownst to you to gain money or access to your confidential information. Examples of sensitive documents include Social Security numbers, credit card numbers, bank account information and passport numbers.
Read Post
indusface

Magecart Attack - Techniques, Examples & Preventions

Aug 23, 2024 By Vinugayathri Chinnasamy In Indusface
Magecart attacks are a form of digital skimming that targets insecure websites to steal payment information. These attacks involve injecting malicious JavaScript code into e-commerce websites to steal sensitive information such as credit card details during the checkout process. The term “Magecart” originates from the attackers’ initial focus on Magento, a popular e-commerce platform, though their methods have since expanded to target various other platforms.
Read Post
graylog

How To Stop A DDoS Attack

Aug 23, 2024 By Jeff Darrington In Graylog
On a Friday afternoon at 5 PM, you’re cruising along the backroads in your car, listening to your favorite music. You’re on vacation and making excellent time to your destination until you notice the long stream of red tail lights a few miles ahead. After sitting in standstill traffic for over an hour, you realize that highway construction created a detour to the two-lane backroad that you were using to skip the rush hour traffic.
Read Post

How to Keep an Identity Attack from Compromising your Infrastructure

Aug 22, 2024 By Teleport In Teleport
Identity Platforms (IdP) provide organizations with incredible convenience with Single Sign-On (SSO). However, if IdPs are compromised, the ‘keys to the castle’ can be left vulnerable, making the rest of the organization’s infrastructure vulnerable as well.
View Video
indusface

8 Types of Cyberattacks a WAF is Designed to Stop

Aug 22, 2024 By Venkatesh Sundar In Indusface
A Web Application Firewall (WAF) is your first line of defense against internet traffic that can be both legitimate and malicious. It helps protect your web applications, websites, and servers from various cyber-attacks by filtering out harmful traffic. WAF (WAAP) is essential for web security as it quickly identifies and addresses vulnerabilities in applications and servers.
Read Post
keeper

How To Prevent Account Takeover Attacks

Aug 22, 2024 By Ashley D'Andrea In Keeper
An account takeover attack is a type of identity theft that occurs when a cybercriminal gains access to your online account and changes your login credentials to lock you out. Once you cannot log back in, a cybercriminal will use your identity to steal private information or even scam others. You can prevent account takeover attacks by using strong passwords, enabling Multi-Factor Authentication (MFA) and investing in dark web monitoring.
Read Post
parablu

How Multifactor Authentication (MFA) Can Reduce Your Cyber Attacks Risk?

Aug 22, 2024 By Parablu In Parablu
Did it ever cross your mind to ask if your password can defend your sensitive info on the web all by itself? In the digital world of today, where cyber threats are rapidly developing, the traditional way of protecting the system with single password has become more and more insecure. Therefore, it is the user who is more exposed to such cyberattacks. Just to mention, more than 81% of data breaches are associated with weak or stolen passwords.
Read Post
WatchGuard

This New Wi-Fi Attack Can Intercept Data Traffic

Aug 20, 2024 By Kirk Jensen In WatchGuard
The growing complexity of networks and connected devices makes implementing effective cybersecurity an increasingly complicated task. While businesses have shown more awareness of the need to elevate their security posture in recent years, several fundamental cyber hygiene issues still need to be addressed.
Read Post
tripwire

UK Businesses Face New Cyber-Attacks Every 44 Seconds in Q2 2024

Aug 20, 2024 By Kirsten Doyle In Tripwire
In the second quarter of 2024, UK businesses faced cyber-attacks every 44 seconds, highlighting the persistent nature of cyber threats and the critical need for robust cybersecurity protocols. This frequency of attacks shines the spotlight on the ongoing challenge UK businesses face in protecting their digital assets. It also stresses the importance of implementing comprehensive security measures to protect against increasingly sophisticated and frequent cyber threats.
Read Post

API Attacks: Understanding Malicious and Malformed Threats

Aug 15, 2024 By Wallarm In Wallarm
This video dives into two critical categories of API attacks: malicious intentions and malformed API threats. Learn why these dangers are becoming increasingly significant for modern companies and how API security can help prevent major incidents. Experts from GigaOm and Wallarm discuss how to identify and mitigate these vulnerabilities to ensure the safety of your data.
View Video
knowbe4

Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Aug 15, 2024 By Stu Sjouwerman In KnowBe4
Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites. We saw earlier this year that phishing attacks leveraging XSS were on the rise. Now, new scams are using XSS to hide their malicious intent within emails, according to new analysis from cybersecurity vendor INKY. These attacks usually begin with an email stating the victim has won something, as shown below: Source: INKY.
Read Post
netacea

How Attackers Use APIs to Disguise Bots as Games Consoles

Aug 13, 2024 By Alex McConnell In Netacea
Attackers and bot authors are continually evolving their methods, shifting their focus beyond just websites. With websites often having a reasonable level of protection, malicious actors are increasingly targeting less-protected areas, namely APIs, with their bots. This blog post delves into the evolving threat landscape. We’ll focus on how attackers exploit APIs and IoT devices to launch attacks like credential stuffing, using streaming services as a prime example.
Read Post
outpost 24

CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery

Aug 13, 2024 By Jimmy Bergqvist In Outpost 24
Cross-Site Request Forgery (CSRF) is a serious web security vulnerability that allows attackers to exploit active sessions of targeted users to perform privileged actions on their behalf. Depending on the relevancy of the action and the permissions of the targeted user, a successful CSRF attack may result in anything from minor integrity impacts to a complete compromise of the application.
Read Post
securitysenses

Thwarting Cyberattacks: Top In-House Solutions

Aug 13, 2024 By SecuritySenses In SecuritySenses
There is no doubt that the number (and severity) of cyberattacks is on the rise. While the lion's share of attention has been devoted to major breaches that often impact multinational organisations, the fact of the matter is that small- to medium-sized enterprises are also at risk. This is why managers and stakeholders must adopt the latest safety protocols to avoid incidents that might otherwise quickly bring operations to a halt. Let us look at four practical suggestions, and the unique benefits associated with each.
Read Post
Trustwave

The Art of Deception: Turning the Tables on Attackers with Active Defenses

Aug 12, 2024 By David Broggy In Trustwave
Once an attacker enters your network, one of their first actions will be to try and hide their tracks by blending in, using methods of deception such as mimicking normal user activities. A cyber defender can also use methods of deception to detect and slow the advance of these adversaries. This is known as an active defense. This article will discuss some methods of using Active Defences, sometimes referred to as ’deceptions,’ as one part of a comprehensive cyber defense strategy.
Read Post
safebreach

QuickShell: Sharing Is Caring about an RCE Attack Chain on Quick Share

Aug 10, 2024 By SafeBreach In SafeBreach
Authors: Shmuel Cohen, Sr. Security Researcher | Or Yair, Security Research Team Lead Google’s Quick Share is a peer–to-peer data-transfer utility for Android, Windows, and Chrome operating systems. It uses a variety of communication protocols—including Bluetooth, Wi-Fi, Wi-Fi Direct, Web real-time communication (WebRTC), and near-field communication (NFC)—to send files between compatible devices that are in close proximity to each other.
Read Post
foresiet

SharpRhino RAT: Hunters International's Latest Weapon in Cyber Attacks

Aug 7, 2024 By Foresiet In Foresiet
In a notable development in the cybersecurity landscape, the emerging threat group known as Hunters International has added a novel remote access Trojan (RAT) to its arsenal. This group, which has quickly ascended the ranks of ransomware operators, is using the RAT, dubbed SharpRhino, to target IT professionals. Disguised as a legitimate network administration tool, SharpRhino facilitates initial access and persistence on targeted networks, setting the stage for ransomware attacks.
Read Post
knowbe4

"Pastejacking" Attacks Are Becoming a Thing (Because Users are Falling for Them)

Aug 7, 2024 By Stu Sjouwerman In KnowBe4
New analysis shows users can be convinced to copy and paste malicious code on behalf of the attacker. I first saw this kind of attack earlier this month – where the user is asked to launch the Run dialog box and paste in a malicious command. I never thought I'd see something similar again, but I was wrong.
Read Post
knowbe4

AI Tools Have Increased the Sophistication of Social Engineering Attacks

Aug 6, 2024 By Stu Sjouwerman In KnowBe4
The Cyber Security Agency of Singapore (CSA) has warned that threat actors are increasingly using AI to enhance phishing and other social engineering attacks, Channel News Asia reports. The CSA’s report found that cybercriminals are selling tools that automate these attacks, allowing unskilled threat actors to launch sophisticated attacks.
Read Post
Arctic Wolf

Top Identity Threats Your Organization Faces

Aug 5, 2024 By Arctic Wolf In Arctic Wolf
Two major organizations breached in 2023 — MGM Resorts and 23andMe — have one part of their hacks in common: identity. Initial access in the 23andMe breach came from credential stuffing, and it was a lack of access control that allowed the threat actors to move deeper into the organization, ultimately exfiltrating data from millions of user accounts.
Read Post
tripwire

3 Types of Bot Attacks to Guard Against

Aug 5, 2024 By Tripwire Guest Authors In Tripwire
Bot attacks constitute a major danger to businesses and individuals. For five consecutive years, the percentage of global web traffic connected to bad bots has increased, reaching 32% in 2023, a 1.8% increase from 30.2% in 2022, while human traffic represented only 50.4%. These nefarious bots are designed to breach a system, access confidential files illegally, and disrupt normal operations, which leads to severe financial and reputational consequences.
Read Post
knowbe4

Global Cyber Attacks See Highest Increases in the Last Two Years

Aug 2, 2024 By Stu Sjouwerman In KnowBe4
New analysis of Q2 2024 cyber attacks shows the number of attacks experienced weekly by organizations globally is on the rise. Each quarter, Check Point Research puts out a quarterly report covering what cyber attack activity they’re seeing globally. Their latest report covering Q2 of 2024 highlights an unexpected rise in overall attack numbers.
Read Post
graylog

What is an account takeover?

Aug 1, 2024 By Jeff Darrington In Graylog
Whether you’re a Halloween or comic con fan, dressing up as your favorite character is something you’ve probably done at least once in your life. As a kid, you were excited to put on that flimsy Batman mask and cape, thinking you looked just like the hero you saw on the movie screen. As an adult, getting or making the most move-accurate costume may allow other people to think that you are the actor in disguise.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.