Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Load balancers are an integral component of any production environment. They allow the distribution of traffic across multiple available backend servers so that no single server becomes overwhelmed due to traffic. A load balancer can be configured for workloads running on AWS through the Elastic Load Balancer (ELB) service. At a high level, an ELB consists of 3 main components: AWS offers 3 different types of Elastic Load Balancers.

In recent weeks, the Cyberint research team has observed an alarming emerging trend – an ongoing and successful hacking campaign is targeting LinkedIn accounts, all following a consistent method. This campaign is currently affecting individuals worldwide, resulting in a significant number of victims losing access to their accounts. Some have even been pressured into paying a ransom to regain control or faced with the permanent deletion of their accounts.

Over the past few years, ransomware has emerged as one of the most significant cybersecurity threats. Recent research conducted by Sophos indicates that the situation is becoming increasingly dire. Notably, the payments demanded by ransomware groups have surged, making the attacks even more costly for victims. Additionally, an alarming 66% of organizations have reported being targeted by ransomware attacks in the last two years alone.

As enterprises increasingly migrate to the public cloud, identity and access management (IAM) inconsistencies across different cloud providers pose a significant hurdle. Effectively securing identities in this complex landscape has proven to be a challenge. Discussions with industry analysts and enterprise clients have highlighted a prevalent issue: the existing security tool suite often falls short in providing actionable measures to weave identity security into cloud operations.

Problems with firewalls can be quite disastrous to your operations. When firewall rules are not set properly, you might deny all requests, even valid ones, or allow access to unauthorized sources. There needs to be a systematic way to troubleshoot your firewall issues, and you need to have a proper plan. You should consider security standards, hardware/software compatibility, security policy planning, and access level specifications.

In the fast-paced world of technology, where innovation drives success, organizations find themselves in a perpetual race to enhance their applications, captivate customers, and stay ahead of the competition. But as your organization launches its latest flagship CRM solution after months of meticulous planning, have you considered what happens beyond Day 0 or Day 1 of the rollout?

Our threat research team recently uncovered new npm packages that are used to download a new info-stealer variant that uses the popular Electron framework to disguise itself as a legitimate application. In this blog post, we’ll analyze the attack flow of this new info-stealer we detected and explain how it can stay undetected by abusing trusted development tools like Electron.

Domain Name System (DNS), informally referred to as the “phonebook of the internet,” is one of the mainstay protocols that makes the internet work by translating reader-friendly domain names into IP addresses and vice-versa.

An integrated physical and digital security access system provides campus law enforcement and security with a more holistic view of activities on campus. When access and identity are further integrated with video surveillance, intercoms, and visitor management, security is strengthened even more. The University of Washington and Michigan State University recently announced plans to expand campus physical and digital security systems.

Cyber threats are increasingly affecting universities and colleges in the USA. Institutions have experienced a surge in cyber attacks in recent years, including data breaches, ransomware attacks, phishing scams, and malware infections. One driving factor for this increase is the valuable data higher education institutions hold, including sensitive personal information of students, faculty members, and staff, as well as important research data and intellectual property.