%term

A SANS 2021 Report Top New Attacks and Threat Report

Jul 30, 2021 By Corelight In Corelight

In the SANS 2021 Top New Attacks and Threat Report, John Pescatore provides insight into the threats highlighted during the SANS panel discussion at the 2021 RSA Conference. This webcast will include practical advice from the paper, including insights from SANS instructors Ed Skoudis, Heather Mahalik, Johannes Ullrich, and Katie Nickels on the critical skills, processes and controls needed to protect their enterprises from these advanced attacks.

View Video

Corelight

Read more about A SANS 2021 Report Top New Attacks and Threat Report

Why bots are a growing problem for airline ticket sales

Jul 30, 2021 By Yasmin Duggal In Netacea

In the wake of the pandemic, airlines are fighting back against challenges from all directions this year. Many have banded together to protest government orders around banned routes, Covid testing and post-travel quarantine periods. International holiday-going in 2021 has become an unappealing prospect for many, due to the added expense and inconvenience imposed by Covid restrictions.

Read Post

Netacea

Read more about Why bots are a growing problem for airline ticket sales

Dangerous games: the cyber security threats to the Olympics

Jul 29, 2021 By Mikesh Nagar In Redscan

In this blog post, we outline past and present threats to the Olympic Games and the steps that organisations can take to reduce the risks. With more than 11,000 athletes and 206 countries and states taking part, the delayed Tokyo 2020 Olympic Games are currently being watched around the world. This level of visibility makes the Games a target for those seeking to cause politically-motivated harm, enrich themselves, boost their profile or undermine the host nation on an international stage.

Read Post

Redscan

Read more about Dangerous games: the cyber security threats to the Olympics

10 Common Cyber Attack Vectors and How to Avoid Them

Jul 28, 2021 By Kasey Hewitt In SecurityScorecard

When it comes to cybercrime, cybercriminals are constantly changing their tactics. Think back to 10 years ago; malware sites — malicious sites that attempt to install malware on a device – were a common attack vector. At the same time, sophisticated ransomware attacks on organizations were rare. Often, ransomware was used to target individuals, sometimes blackmailing them for having been on unsavory sites and asking for a few hundred dollars in ransom.

Read Post

SecurityScorecard

Read more about 10 Common Cyber Attack Vectors and How to Avoid Them

The Next Disruptive ICS Attack: 3 Likely Sources for Major Disruptions

Jul 28, 2021 By Craig Young In Tripwire

Faced with rows of empty gas pumps, many Americans on the East Coast may be wondering why this happened, whether it will happen again, or if there is anything we can do to avoid future catastrophe. The unpleasant truth of the matter is that this will certainly not be the last time society is disrupted due to attackers targeting critical industrial control systems (ICS). The impact of such an attack is amplified by the growing reliance on automation and antiquated protocols throughout many OT networks.

Read Post

Tripwire

Read more about The Next Disruptive ICS Attack: 3 Likely Sources for Major Disruptions

What is a Right-to-Left Override Attack?

Jul 21, 2021 By Cybriant In Cybriant

The right-to-left override attack may be unassuming but incredibly malicious. Most people have heard about phishing attacks, but they think that opening a file with the ".txt" extension is harmless.

Read Post

Cybriant

Read more about What is a Right-to-Left Override Attack?

What is Cross-Site Scripting?

Jul 20, 2021 By Veracode In Veracode

Learn more about cross-site scripting (XSS) and how to avoid common XSS attacks.

View Video

Veracode

Read more about What is Cross-Site Scripting?

What is SQL Injection?

Jul 20, 2021 By Veracode In Veracode

Learn more about SQL injection vulnerabilities and how to prevent a SQL injection attack.

View Video

Veracode

Read more about What is SQL Injection?

ICYM: 4 lessons for securing codebases from secrets exfiltration

Jul 19, 2021 By Michael Osakwe In Nightfall

Last month we hosted a webinar dedicated to discussing the issue of codebase security. As trends like secrets and credential exfiltration continue to be of concern within systems like GitHub, threats, such as cryptojacking and supply side attacks, have become more of a problem. This makes understanding key aspects of codebase security very important. That’s why we pulled out 4 lessons from our recent session that developers and security engineers must know.

Read Post

Nightfall

Read more about ICYM: 4 lessons for securing codebases from secrets exfiltration

Protect Your Retail Supply Chain Against Cyber Attacks

Jul 15, 2021 By SecurityScorecard In SecurityScorecard

The consumer goods and retail industry stores customer data in various digital platforms across multiple third-party vendors. This environment is perfect for cybercriminals to look for weak points to gain access to valuable customer data. Oftentimes, cybersecurity teams are focused too much on securing their own organization from the outside. As hacker techniques become more widespread and sophisticated, organizations must be able to see not only their own security posture but also their third parties’ from the viewpoint of the hackers’. What do hackers see and where are the weak points?

View Video