%term

How To Prevent Account Takeover Attacks

Aug 22, 2024 By Ashley D'Andrea In Keeper

An account takeover attack is a type of identity theft that occurs when a cybercriminal gains access to your online account and changes your login credentials to lock you out. Once you cannot log back in, a cybercriminal will use your identity to steal private information or even scam others. You can prevent account takeover attacks by using strong passwords, enabling Multi-Factor Authentication (MFA) and investing in dark web monitoring.

Read Post

Keeper

Read more about How To Prevent Account Takeover Attacks

How Does DDoS Mitigation Work?

Aug 21, 2024 By Indusface In Indusface

Discover how DDoS mitigation works to protect your website from attacks. Learn about the strategies used to detect and neutralize threats, ensuring uninterrupted service.

View Video

Indusface

Read more about How Does DDoS Mitigation Work?

This New Wi-Fi Attack Can Intercept Data Traffic

Aug 20, 2024 By Kirk Jensen In WatchGuard

The growing complexity of networks and connected devices makes implementing effective cybersecurity an increasingly complicated task. While businesses have shown more awareness of the need to elevate their security posture in recent years, several fundamental cyber hygiene issues still need to be addressed.

Read Post

WatchGuard

Read more about This New Wi-Fi Attack Can Intercept Data Traffic

UK Businesses Face New Cyber-Attacks Every 44 Seconds in Q2 2024

Aug 20, 2024 By Kirsten Doyle In Tripwire

In the second quarter of 2024, UK businesses faced cyber-attacks every 44 seconds, highlighting the persistent nature of cyber threats and the critical need for robust cybersecurity protocols. This frequency of attacks shines the spotlight on the ongoing challenge UK businesses face in protecting their digital assets. It also stresses the importance of implementing comprehensive security measures to protect against increasingly sophisticated and frequent cyber threats.

Read Post

Tripwire

Read more about UK Businesses Face New Cyber-Attacks Every 44 Seconds in Q2 2024

API Attacks: Understanding Malicious and Malformed Threats

Aug 15, 2024 By Wallarm In Wallarm

This video dives into two critical categories of API attacks: malicious intentions and malformed API threats. Learn why these dangers are becoming increasingly significant for modern companies and how API security can help prevent major incidents. Experts from GigaOm and Wallarm discuss how to identify and mitigate these vulnerabilities to ensure the safety of your data.

View Video

Wallarm

Read more about API Attacks: Understanding Malicious and Malformed Threats

Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Aug 15, 2024 By Stu Sjouwerman In KnowBe4

Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites. We saw earlier this year that phishing attacks leveraging XSS were on the rise. Now, new scams are using XSS to hide their malicious intent within emails, according to new analysis from cybersecurity vendor INKY. These attacks usually begin with an email stating the victim has won something, as shown below: Source: INKY.

Read Post

KnowBe4

Read more about Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Dependency Confusion Attacks and Prevention: Register Your Private Package Names

Aug 15, 2024 By Guest Expert In GitGuardian

Dependency confusion attacks exploit gaps in your software supply chain. Dive into modern dependency management and learn how to defend your systems with best practices.

Read Post

GitGuardian

Read more about Dependency Confusion Attacks and Prevention: Register Your Private Package Names

How Attackers Use APIs to Disguise Bots as Games Consoles

Aug 13, 2024 By Alex McConnell In Netacea

Attackers and bot authors are continually evolving their methods, shifting their focus beyond just websites. With websites often having a reasonable level of protection, malicious actors are increasingly targeting less-protected areas, namely APIs, with their bots. This blog post delves into the evolving threat landscape. We’ll focus on how attackers exploit APIs and IoT devices to launch attacks like credential stuffing, using streaming services as a prime example.

Read Post

Netacea

Read more about How Attackers Use APIs to Disguise Bots as Games Consoles

CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery

Aug 13, 2024 By Jimmy Bergqvist In Outpost 24

Cross-Site Request Forgery (CSRF) is a serious web security vulnerability that allows attackers to exploit active sessions of targeted users to perform privileged actions on their behalf. Depending on the relevancy of the action and the permissions of the targeted user, a successful CSRF attack may result in anything from minor integrity impacts to a complete compromise of the application.

Read Post

Outpost 24

Read more about CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery

Thwarting Cyberattacks: Top In-House Solutions

Aug 13, 2024 By SecuritySenses In SecuritySenses

There is no doubt that the number (and severity) of cyberattacks is on the rise. While the lion's share of attention has been devoted to major breaches that often impact multinational organisations, the fact of the matter is that small- to medium-sized enterprises are also at risk. This is why managers and stakeholders must adopt the latest safety protocols to avoid incidents that might otherwise quickly bring operations to a halt. Let us look at four practical suggestions, and the unique benefits associated with each.

Read Post