Cyberattacks

Top tips: Notorious session sniffing attacks and tips for avoiding them

Aug 29, 2024 By General In ManageEngine

In cybersecurity, session sniffing—an attack method where attackers receive and use session data—is a recurring danger. The impacts of session sniffing are evident from numerous high-profile assaults. Let’s discuss some of these important cases that highlight the significance of strong security procedures.

Read Post

ManageEngine

Read more about Top tips: Notorious session sniffing attacks and tips for avoiding them

Supply Chain Attack Fundamentals

Aug 29, 2024 By Indusface In Indusface

Overview: Picture this: Your website included a 3rdparty component (such as a WordPress plug-in), and hackers used that as a backdoor to infiltrate your systems, which were secure on their own. This is a supply chain attack. Pollyfillio attack is a recent example of this where 100,000 websites were impacted last month. In this webinar, Vivekanand Gopalan (VP of Products - Indusface) and Phani Deepak Akella (VP of Marketing - Indusface) discuss strategy and tactics to protect your applications from supply chain attacks.

View Video

Indusface

Read more about Supply Chain Attack Fundamentals

Voices from Validate: The Role of Breach & Attack Simulation in Cybersecurity Testing

Aug 29, 2024 By SafeBreach In SafeBreach

Security teams have a wide range of tools in their arsenal to combat cybersecurity threats, but the expanding attack surface and the sheer number of tools can make their jobs more difficult to manage. As we enter this new era of cybersecurity, security and risk management, leaders are focused on validating the efficacy of their security investments, improving ROI, and taking a more programmatic approach in order to enhance their efficiency.

Read Post

SafeBreach

Read more about Voices from Validate: The Role of Breach & Attack Simulation in Cybersecurity Testing

Rubrik and Cisco to Safeguard Data Against Cyberattacks

Aug 29, 2024 By Ghazal Asif In Rubrik

A Rubrik Zero Labs report found that 66% of IT and security leaders report that data growth outpaces their ability to secure data and mitigate risk. Adversaries are noticing, increasing the sophistication of cyberattacks, and leveraging gaps in coverage to target critical data for destruction, theft, or extortion. As the volume of data continues to grow and exacerbate visibility challenges, organizations must find ways to manage and protect their constantly expanding data.

Read Post

Rubrik

Read more about Rubrik and Cisco to Safeguard Data Against Cyberattacks

Supply Chain Attacks: Infiltrating Organizations Through the Backdoor

Aug 28, 2024 By Devo In Devo

An organization is only as secure as its weakest link — and the software supply chain is most often where the weakest link is found. A supply chain attack is a sophisticated cyberattack where malicious actors compromise a service provider to gain unauthorized access to its end users. Since 2018, the number of organizations impacted by supply chain attacks has increased by 2,600%.

Read Post

Devo

Read more about Supply Chain Attacks: Infiltrating Organizations Through the Backdoor

A deep dive into investigating a complex denial-of-service attack

Aug 27, 2024 By Ahmad Mustafa In Datadog

On April 19, 2024, Datadog’s US5 website (app.us5.datadoghq.com) started experiencing elevated error rates, though they were low enough that most of our users didn’t notice them. For the next few days, we worked around the clock responding to multiple episodes of this mysterious attack, which gradually unfolded as we investigated. We also implemented several measures to reduce the impact on our customers.

Read Post

Datadog

Read more about A deep dive into investigating a complex denial-of-service attack

Formjacking Attacks - How They Work and How to Prevent Them

Aug 26, 2024 By Vinugayathri Chinnasamy In Indusface

Formjacking is a cyberattack where attackers inject malicious JavaScript code into webpages containing form fields, usually on login pages or payment forms. The objective is to steal sensitive information, such as credit card details, passwords, and other personal data, directly from users as they enter it into the compromised forms. Formjacking attack occurs entirely on the client side—within the user’s browser—making it particularly challenging to detect.

Read Post

Indusface

Read more about Formjacking Attacks - How They Work and How to Prevent Them

Cato CTRL Threat Actor Profile: Yashechka

Aug 26, 2024 By Etay Maor In Cato Networks

To further raise awareness on threat actor activity in the dark web and hacking communities, today we are introducing the Cato CTRL Threat Actor Profile. This will be a blog series that profiles various threat actors and documents notable activity that we are observing. Our inaugural Cato CTRL Threat Actor Profile is on Yashechka.

Read Post

Cato Networks

Read more about Cato CTRL Threat Actor Profile: Yashechka

How To Mitigate the Risk of Ransomware Attacks

Aug 26, 2024 By Ashley D'Andrea In Keeper

You can mitigate the risk of ransomware attacks by regularly backing up your data, updating your device with the latest software, implementing least-privilege access, using a business password manager and educating employees about security awareness, among other things. Ransomware attacks occur when organizations are prevented from accessing files and data until they’ve paid a ransom to the cybercriminal who infected their devices with malware.

Read Post

Keeper

Read more about How To Mitigate the Risk of Ransomware Attacks

Top 10 Cyber Risk Assessment Tools

Aug 23, 2024 By Arthur Zavalkovsky In Memcyco

Estimating the potential impact of a successful cyber attack may seem impossible, especially given the rapid expansion of organizations’ digital footprint (and, consequently, their attack surface). One example are attacks which pertain to the contact points between businesses and clients, such as websites and mobile apps. In particular, these assets can be cloned and used for phishing attacks.

Read Post