Cyberattacks

What is Unrestricted Code Execution? How to Defend Organizations Against this Attack?

May 2, 2024 By SignMyCode In SignMyCode

Nowadays, with more organizations and individuals relying heavily on third-party software to execute their high-priority and covert tasks, the risks of data breaches or cyber-attacks are becoming a serious issue. A cyber attack is basically an attempt by cybercriminals, hackers, or other digital adversaries to access a computer network or system with a willingness to expose, alter, steal, or destroy your million-dollar information.

Read Post

SignMyCode

Read more about What is Unrestricted Code Execution? How to Defend Organizations Against this Attack?

What Is a Silver Ticket Attack?

May 2, 2024 By Jaryeong Kim In Keeper

A ticket in cybersecurity is a set of credentials used to authenticate users. A silver ticket is a forged ticket an unauthorized user creates. With this forged silver ticket, threat actors can launch a cyber attack that involves exploiting the weaknesses of a Kerberos authentication system. In this system, a Ticket Granting Service (TGS) serves as the credential token, granting authorized users access to particular services.

Read Post

Keeper

Read more about What Is a Silver Ticket Attack?

Navigating the Masquerade: Recognizing and Combating Impersonation Attacks

May 1, 2024 By Stu Sjouwerman In KnowBe4

With all great power, there comes an equal potential for misuse. Among the sophisticated arsenal of threat actors, impersonation attacks have surged to the forefront, which questions our sense of trust.

Read Post

KnowBe4

Read more about Navigating the Masquerade: Recognizing and Combating Impersonation Attacks

The Top 11 Legal Industry Cyber Attacks

Apr 30, 2024 By Arctic Wolf In Arctic Wolf

A law firm can only be successful if it can meet the needs of its clients, and few components put that success at risk more than the rising danger and repercussions of a cyber attack. In addition to the time, effort, and money a firm must spend responding to a successful breach, employees may find themselves unable to access the firm’s technology and, therefore, unable to bill hours.

Read Post

Arctic Wolf

Read more about The Top 11 Legal Industry Cyber Attacks

JFrog Security research discovers coordinated attacks on Docker Hub that planted millions of malicious repositories

Apr 30, 2024 By Andrey Polkovnichenko In JFrog

As key parts of the software ecosystem, and as partners, JFrog and Docker are working together to strengthen the software ecosystem. Part of this effort by JFrog’s security research team involves continuous monitoring of open-source software registries in order to proactively identify and address potential malware and vulnerability threats.

Read Post

JFrog

Read more about JFrog Security research discovers coordinated attacks on Docker Hub that planted millions of malicious repositories

Preventing Magecart Attacks Through Supply Chain Vulnerabilities

Apr 30, 2024 By Nethanel Gelernter In IONIX

The digital supply chain refers to the chain of third-party digital tools, services and infrastructure that is depended on for a particular first-party service (such as your website or SaaS platform). In an ever-changing digital landscape, supply chains can be brittle with many unseen risks. The nature of supply chain risk is transitive; any part of the often long and complicated digital supply chain can be compromised, causing all components downstream of it to also be compromised.

Read Post

IONIX

Read more about Preventing Magecart Attacks Through Supply Chain Vulnerabilities

Shamane Tan on cyber resilience - Cyber Security Decoded

Apr 30, 2024 By Rubrik In Rubrik

Bouncing back from a cyber incident, data breach or #ransomware attack is a great accomplishment…but how can you bounce forward? A complete Cyber Resilience strategy is mission-critical. Security teams should be proactive and have response plans in place for when #CyberAttacks hit, rather than attempting to prevent attacks from occurring. With a #CyberResilience strategy, your team will be equipped with a plan when a cyber incident occurs while also having tools to identify those malicious attacks before they happen.

View Video

Rubrik

Read more about Shamane Tan on cyber resilience - Cyber Security Decoded

Targeted Smishing Attacks by Threat Group "The Com" On The Rise

Apr 29, 2024 By Stu Sjouwerman In KnowBe4

Cyber activity by the group "The Com," which leverages (SIM) swapping, cryptocurrency theft, swatting, and corporate intrusions, is increasing. Security researchers at Intel471 have published an analysis of the threat group, “The Com” (short for “The Community”), providing details about their targets and tactics. Operating mostly from Canada, the U.S.

Read Post

KnowBe4

Read more about Targeted Smishing Attacks by Threat Group "The Com" On The Rise

What is MFA bombing? Apple users were targeted using this phishing technique

Apr 29, 2024 By Luis Corrons In Avast

Some Apple users have reported phishing attacks using the password reset feature.

Read Post

Avast

Read more about What is MFA bombing? Apple users were targeted using this phishing technique

New Report Finds That 27% of Small Businesses Would Be Put Out of Business By A Cyber Attack

Apr 25, 2024 By Stu Sjouwerman In KnowBe4

According to the U.S. Chamber of Commerce, the pressure is mounting on small and medium businesses (SMBs), as they must get their cyber preparedness correct or the next cyber attacks could prove disastrous.

Read Post