Cyberattacks

Denial Of Service vulnerabilities

Nov 9, 2022 By John Gates In CalCom

A denial of service attack is a type of network attack in which an attacker makes the system, machine, or network unavailable to the intended users. There are various types of DOS attacks, like, for instance, a user is trying to reach a webpage but the page redirects the user to another URL or even the user can’t reach its destination i.e. access is blocked. In this article we will discuss.

Read Post

CalCom

Read more about Denial Of Service vulnerabilities

Cyber Attacks Are Coming, Cyber Security Must Ensure Business Survivability

Nov 8, 2022 By Razorthorn In Razorthorn

Jonathan Care talks about cyber security practitioners' role in ensuring the business survives when cyber attacks are coming. Jonathan Care is a recognised expert in the field of Cyber Security and Fraud Detection. A former top-rated Gartner analyst, Care was responsible for defining the fraud market and leading Gartner’s Insider Threat and Risk research. He regularly advises cyber security industry leaders on strategic growth and has worked with key figures in industry and government across the globe. He is a lead contributor for Dark Reading, an industry-defining publication.

View Video

Razorthorn

Read more about Cyber Attacks Are Coming, Cyber Security Must Ensure Business Survivability

NPM security: preventing supply chain attacks

Nov 7, 2022 By Liran Tal In Snyk

NPM security has been a trending topic in the media in recent years, mostly in reference to npm packages available on the ecosystem rather than the npm registry itself. The increasing security risk, that applies to developers and software we build, makes it even more important to understand how to prevent supply chain attacks and other security vulnerabilities related to software development life cycle.

Read Post

Snyk

Read more about NPM security: preventing supply chain attacks

The Power of Manual Penetration Testing in Securing Your Attack Surface

Nov 7, 2022 By Veracode In Veracode

When it comes to protecting software, don’t count on automated testing to find all the vulnerabilities in your code. Here’s why manual penetration testing is more essential (and more accessible) than one might think.

Read Post

Veracode

Read more about The Power of Manual Penetration Testing in Securing Your Attack Surface

Remember, Remember: What Guy Fawkes and the Gunpowder Plot Can Teach Us About Modern Cyber Attacks

Nov 6, 2022 By Yaroslav Rosomakho In Netskope

10 years ago I moved to the UK and made it my home, and I love living here. I like Marmite, debates over whether the evening meal is dinner, tea, or supper, the constant requirement to remark upon the weather… and the many bizarre traditions. One of these bizarre traditions is Bonfire Night, celebrated on 5th November each year to commemorate the Gunpowder Plot when a bunch of conspirators (including a man called Guy Fawkes) tried to blow up Parliament and King James.

Read Post

Netskope

Read more about Remember, Remember: What Guy Fawkes and the Gunpowder Plot Can Teach Us About Modern Cyber Attacks

Demystifying Breach Notification

Nov 4, 2022 By Kroll In Kroll

As the number of high-profile cyberattacks and data breaches has increased in recent years, more companies have made investments to better secure their systems and develop incident response plans. While these are essential concerns, a firm’s obligations don’t simply end when a threat is removed from the network and they are able to resume normal operations. They must also notify those whose data may have been impacted by the breach.

Read Post

Kroll

Read more about Demystifying Breach Notification

KillNet Operations Against U.S. Targets Persist With Attempted Airport Website Attacks

Nov 4, 2022 By Dr. Robert Ames In SecurityScorecard

In October, BleepingComputer reported that the websites of several airports were experiencing service disruptions after the KillNet threat actor group announced that they would target airports throughout the U.S.

Read Post

SecurityScorecard

Read more about KillNet Operations Against U.S. Targets Persist With Attempted Airport Website Attacks

The Top Cyber Attacks of October 2022

Nov 4, 2022 By Arctic Wolf In Arctic Wolf

We’ve made it through spooky season once again, but there is still plenty of scary business unfolding in the world of cybersecurity. October offered several useful cautionary tales for organizations, including a company that took fast action and averted a threat, one that overlooked a security gap for far too long, another that offered a crucial reminder about improper conduct, and one more that … well, we’re not quite sure what the heck happened with that one.

Read Post

Arctic Wolf

Read more about The Top Cyber Attacks of October 2022

Responding to the Dropbox Breach with a Falco GitHub Plugin

Nov 4, 2022 By Nigel Douglas In Sysdig

On November 1st, Dropbox disclosed a security breach where the attackers stole over 130 code repositories after gaining access to one of the employee’s GitHub accounts using the stolen credentials of that employee via a well-designed phishing attack.

Read Post

Sysdig

Read more about Responding to the Dropbox Breach with a Falco GitHub Plugin

How to Protect Against Domain Impersonation with Falcon Intelligence Recon Typosquatting

Nov 4, 2022 By CrowdStrike In CrowdStrike

Malicious actors leverage a technique called typosquatting to trick users into believing a falsified domain is legitimate. The fake domain can be used to trick users into visiting malicious site or trusting an email that they have received. CrowdStrike Falcon Intelligence Recon provides the ability to monitor for when key terms are identified in newly created or changed domains. This can be used to monitor brands or identify when a fraudulent domain is being used.

View Video