Cyberattacks

Capturing Password Hashes: LLMNR/NBT-NS/mDNS Poisoning

Jul 12, 2023 By Pentest People In Pentest People

In the digital age we live in, attackers are continually developing new techniques to compromise computer systems. However, an attack that was first disclosed over a decade ago at Black Hat USA 2011 is still one of the most common ways we compromise a domain admin account on an engagement.

Read Post

Pentest People

Read more about Capturing Password Hashes: LLMNR/NBT-NS/mDNS Poisoning

Managing reputational damage after a cyber attack - Panel discussion

Jul 12, 2023 By GitGuardian In GitGuardian

As part of the Cyber Friday discussion, Mackenzie Jackson and Julie Tsai discuss how you can manage reputational damage following a security incident including the do's and the do not's.

View Video

GitGuardian

Read more about Managing reputational damage after a cyber attack - Panel discussion

Vivek Bhandari Interview With KTVU: Cyber Crime and Government Infrastructure

Jul 12, 2023 By Tanium In Tanium

Tanium's chief cybersecurity strategist Vivek Bhandari weighs in on the recent ransomware attack on Hayward city in the latest for KTVU.

View Video

Tanium

Read more about Vivek Bhandari Interview With KTVU: Cyber Crime and Government Infrastructure

Understanding API Attacks

Jul 11, 2023 By Salt Security In Salt Security

As APIs have become the backbone of modern applications, threat actors are increasingly targeting them. Whether it be to exfiltrate data, take control of critical systems, or disrupt key business services or digital supply chains, threat actors have taken notice—and they see APIs as a prosperous attack vector. In this video, you’ll gain valuable insights into API security and learn proactive measures to safeguard your APIs. By understanding the challenges posed by API attacks, you’ll understand the best strategies to protect your organization.

View Video

Salt Security

Read more about Understanding API Attacks

Bring your own CA for client certificate validation with API Shield

Jul 11, 2023 By Dina Kozlov In Cloudflare

APIs account for more than half of the total traffic of the Internet. They are the building blocks of many modern web applications. As API usage grows, so does the number of API attacks. And so now, more than ever, it’s important to keep these API endpoints secure. Cloudflare’s API Shield solution offers a comprehensive suite of products to safeguard your API endpoints and now we’re excited to give our customers one more tool to keep their endpoints safe.

Read Post

Cloudflare

Read more about Bring your own CA for client certificate validation with API Shield

Cyberattack Spotlight: The Zero-Day Exploit

Jul 11, 2023 By Cadi Silla In Internxt

A zero-day attack takes advantage of a weakness in a target’s network, software, or infrastructure—without the target even knowing. These type of cyber attacks can be devastating because the attack will continue unimpeded until it’s eventually spotted (that’s if it’s spotted at all). This article shines a spotlight on the danger. We define the features of zero-day incidents and consider some famous case studies.

Read Post

Internxt

Read more about Cyberattack Spotlight: The Zero-Day Exploit

Identify Gaps and Thwart Attacks with Devo Exchange and the MITRE ATT&CK Framework

Jul 10, 2023 By The Devo Team In Devo

The MITRE ATT&CKⓇ framework holds immense value in the realm of cybersecurity. With its comprehensive and structured approach, it serves as a powerful tool for understanding and countering complex, multi-vector cyber threats.

Read Post

Devo

Read more about Identify Gaps and Thwart Attacks with Devo Exchange and the MITRE ATT&CK Framework

Guide to Cyberattack Risk: Mitigation and Response

Jul 8, 2023 By Greg Dougherty In Opti9

Ransomware and cyberattacks are on the rise, and that’s a deeply concerning thought for technology leaders. Considering what a breach could cost, and how long it would take to rectify, it’s no wonder risk mitigation and response is at the forefront of every CTO’s mind. Ransomware is a type of malicious software that blocks access to a computer system or encrypts files until a ransom is paid. It’s often spread through phishing emails or infected websites.

Read Post

Opti9

Read more about Guide to Cyberattack Risk: Mitigation and Response

Email-Based Cyber Attacks in Europe Increase 7-Fold in Just One Year

Jul 7, 2023 By Stu Sjouwerman In KnowBe4

An abnormally massive focus on business email compromise attacks in Europe has fueled an equally large growth in overall email attacks there, with the U.S. also seeing significant attack growth. We’ve seen a lot of recent reports looking back at 2022 to help provide insight into what to continue to expect this year. But new data from security analysts at Abnormal Security takes us well into June of this year, highlighting the problem of email-based attacks.

Read Post

KnowBe4

Read more about Email-Based Cyber Attacks in Europe Increase 7-Fold in Just One Year

The Top Cyber Attacks of June 2023

Jul 7, 2023 By Arctic Wolf In Arctic Wolf

Summer is here, and things are heating up in the cybersecurity sphere. June saw a third-party vulnerability spiral into the furthest-reaching cyber attack of the year thus far, while separate attacks cut into summer plans for gamers, vacationers, and commuters alike.

Read Post