%term

Catching Up on Cloud Attack Paths with Cloud Threat Specialist Sebastian Walla

May 28, 2025 By CrowdStrike In CrowdStrike

Today’s adversaries are increasingly operating in the cloud — and Sebastian Walla, Deputy Manager of Emerging Threats at CrowdStrike, is watching them. In this episode, he joins Adam and Cristian to dive into the latest cloud attack techniques and the adversaries behind them.

View Video

CrowdStrike

Read more about Catching Up on Cloud Attack Paths with Cloud Threat Specialist Sebastian Walla

Layer 7 DDoS Attack Methods

May 27, 2025 By A10 Networks In A10 Networks

A10 Networks' security experts Jamison Utter and Carlo Alpuerto delve into comprehensive DDoS protection. In this segment, Carlo Alpuerto explains how attackers exploit Layer 7 DDoS methods, such as slow POST attacks and other slow-rate techniques (potentially referring to "slow patches" or similar application-layer attacks), to disrupt services. Whether you're a security professional, network administrator, or business leader concerned about cyber resilience, this expert conversation provides actionable insights to strengthen your organization's DDoS protection posture.

View Video

A10 Networks

Read more about Layer 7 DDoS Attack Methods

Why Codefinger represents a new stage in the evolution of ransomware

May 27, 2025 By Justin Giardina, Chief Technology Officer In 11:11 Systems

Forget typical ransomware! Codefinger hijacked cloud keys directly, exposing backup flaws and shared responsibility risks. Time to rethink defence. If you didn't pay much attention to news of the recent Codefinger ransomware attack, it's possibly because ransomware has become so prevalent that major incidents no longer feel notable. But Codefinger is not just another ransomware breach to add to the list of incidents where businesses lost sensitive data to attackers. In key respects, Codefinger represents a substantially new type of ransomware attack.

Read Post

11:11 Systems

Read more about Why Codefinger represents a new stage in the evolution of ransomware

How To Reduce Your Attack Surface with Secure Password Management

May 26, 2025 By Keeper Security In Keeper

With the rise of remote work, cloud computing and mobile devices, your organization’s attack surface is larger than ever. Watch this short video to learn what an attack surface is, how to identify security vulnerabilities and five ways to minimize your attack surface.

View Video

Keeper

Read more about How To Reduce Your Attack Surface with Secure Password Management

The Change Healthcare hack wasn't just a breach-it was a wake-up call

May 26, 2025 By Hari Kumar Selvanarayanan In ManageEngine

"The US healthcare system is broken" is not an uncommon phrase. With no universal healthcare coverage, administrative inefficiencies, and an under-resourced primary care system, it's so bad that falling ill could very well bankrupt a citizen.

Read Post

ManageEngine

Read more about The Change Healthcare hack wasn't just a breach-it was a wake-up call

Layer 7 DDoS Attacks: How Hackers Target the Application Layer

May 23, 2025 By Indusface In Indusface

Layer 7 DDoS attacks—also known as application-layer attacks—target the part of your application that users interact with, like login pages, search boxes, and APIs. Unlike traditional volumetric DDoS attacks, these are stealthy, harder to detect, and can take down your app using fewer requests.

View Video

Indusface

Read more about Layer 7 DDoS Attacks: How Hackers Target the Application Layer

What is NoSQL Injection? | Examples & How to Prevent It

May 23, 2025 By Indusface In Indusface

NoSQL Injection is a serious web security flaw that targets NoSQL databases like MongoDB. In this video, you’ll learn: What NoSQL injection is How attackers exploit unsanitized inputs Real-world NoSQL injection examples Best practices to prevent these attacks Secure your applications with proper input validation and safe query building techniques.

View Video

Indusface

Read more about What is NoSQL Injection? | Examples & How to Prevent It

What is Command Injection? | Examples & Prevention Tips

May 23, 2025 By Indusface In Indusface

Command Injection is a critical web vulnerability that allows attackers to execute arbitrary commands on a server. Learn how to detect and block command injection with secure coding practices and proper input validation.

View Video

Indusface

Read more about What is Command Injection? | Examples & Prevention Tips

Effective Deception for Zero Day Attacks: Strategies for Cyber Defense

May 23, 2025 By Fidelis Security In Fidelis Security

Deception for Zero day attacks has become a crucial strategy as these devastating exploits continue to surge rapidly. These attacks pose extreme danger because they target vulnerabilities unknown to software vendors or the public, which leaves systems defenseless without immediate patches. Attackers can exploit these vulnerabilities undetected for extended periods – from days to years. This creates a huge window for attacks before vendors can patch the problems.

Read Post

Fidelis Security

Read more about Effective Deception for Zero Day Attacks: Strategies for Cyber Defense

One SQL Injection Could Bring Down Your App. Here's How to Prevent It

May 23, 2025 By SafeAeon Inc. In SafeAeon

SQL Injection represents the most common web application vulnerability, and justifiably so: it is the most dangerous. Attackers can inject SQL code into victims' sites and access databases, potentially allowing unauthorized access and data compromise or, worst case, full-blown compromise of the site. Shielding one's website against SQL injections would mean having to understand how SQL injections work and implement preventive measures against them.

Read Post