%term

Top Strategies to Protect Your Website from Subdomain Takeovers

Nov 18, 2024 By Leah Sadoian In UpGuard

Subdomain takeovers pose a significant and often overlooked threat to website security. In today's digital age, almost every business has a website to promote, inform, and provide resources to visitors. Websites that use multiple subdomains risk exposing themselves to cyberattacks. Subdomain takeovers can lead to data breaches and reputational damage. However, these risks can be minimized with the right strategies, and your organization can stay protected.

Read Post

UpGuard

Read more about Top Strategies to Protect Your Website from Subdomain Takeovers

The Role of Pretexting in Cyber Attacks

Nov 18, 2024 By Arctic Wolf In Arctic Wolf

A threat actor sends an email to a user at an organization claiming to be from the IT department. They need a password to a critical application, and the email is convincing – it mentions aspects of the application that would only be known to the user, it brings up a recent update email that was sent out company wide, and it even closes with a friendly, “Hope to see at next week’s happy hour!” in the sign-off.

Read Post

Arctic Wolf

Read more about The Role of Pretexting in Cyber Attacks

What is SQL Injection?

Nov 18, 2024 By Indusface In Indusface

SQL injection is a type of attack where malicious SQL code is inserted into a query, allowing attackers to access or manipulate a website's database. Learn the best practices to prevent SQL injection and safeguard your web applications.

View Video

Indusface

Read more about What is SQL Injection?

The Strategic Advantage of Hybrid DDoS Protection: Cost Efficiency and Enhanced Control

Nov 15, 2024 By Jamison Utter In A10 Networks

In the digital age, distributed denial of service (DDoS) attacks pose a significant threat to organizations, potentially leading to service disruptions and financial losses. To effectively combat these threats, businesses are increasingly adopting hybrid DDoS protection solutions. By integrating cloud traffic scrubbing, on-premises local protection, global DDoS-specific threat intelligence, and an orchestration platform, hybrid solutions offer a comprehensive defense strategy.

Read Post

A10 Networks

Read more about The Strategic Advantage of Hybrid DDoS Protection: Cost Efficiency and Enhanced Control

Not Your Grandfather's Hacktivists: How Hacktivism Has Evolved

Nov 14, 2024 By Coral Tayar In Cyberint

Hacktivism – the practice of carrying out cyberattacks to advance political or social goals – is not new. Hacktivist attacks go as far back as the 1980s. Yet today’s hacktivists often look and operate in ways that are markedly different from their predecessors. They’ve embraced new techniques, they often have more resources at their disposal and they can prove more challenging to stop.

Read Post

Cyberint

Read more about Not Your Grandfather's Hacktivists: How Hacktivism Has Evolved

Major cyber attacks and data breaches of 2024

Nov 14, 2024 By Harman Singh In Cyphere

As 2024 draws to a close, the cybersecurity landscape continues to evolve, marked by both familiar adversaries and emerging threats with newer technologies and improved tactics. Rather than merely cataloguing breaches, we look into the anatomy of significant cyber attacks, associated vulnerabilities that led to such events, and relevant controls. We’ve chronicled key developments month by month, offering a comprehensive view of the cyber attacks of 2024 narrative that would help you learn lessons.

Read Post

Cyphere

Read more about Major cyber attacks and data breaches of 2024

The Rise of Security in Today's Technology Era

Nov 14, 2024 By SecuritySenses In SecuritySenses

In today's connected world, security is one of the most crucial fears for both people and institutions. With the increase in internet use, digital transformation as well as new technologies such as cloud computing and the Internet of Things (IOT), cyber threat attack surface has increased substantially. Cybercriminals, hackers, and other malicious actors are increasingly faced with the need to secure these assets from them as more data and processes go online, thus making it a more complex endeavor.

Read Post

SecuritySenses

Read more about The Rise of Security in Today's Technology Era

Fortifying Defenses Against AI-Powered OSINT Cyber Attacks

Nov 13, 2024 By James McQuiggan In KnowBe4

In the ever-evolving landscape of cybersecurity, the convergence of Artificial Intelligence (AI) and Open-Source Intelligence (OSINT) has created new opportunities for risk. It is crucial to understand that this powerful combination is also being weaponized by cybercriminals, presenting unprecedented challenges for organizations worldwide.

Read Post

KnowBe4

Read more about Fortifying Defenses Against AI-Powered OSINT Cyber Attacks

The State of SQL Injection

Nov 11, 2024 By Mackenzie Jackson In Aikido

SQL injection (SQLi) has a history that is older than Internet Explorer (which according to Gen Z was the start of civilization). There have been thousands of breaches caused by SQL injection and an endless amount of well-documented best practices and tools to help prevent it. So surely, surely we learned our lesson from these breaches and SQLi is no longer an issue.

Read Post

Aikido

Read more about The State of SQL Injection

How to Conduct a Comprehensive Base Security Assessment

Nov 11, 2024 By SecuritySenses In SecuritySenses

Conducting a comprehensive base security assessment is crucial. It ensures the safety of personnel, assets, and information. With the rise of various threats, it's more important than ever to evaluate and enhance security measures systematically. A thorough assessment not only identifies weaknesses. It also assists in implementing effective security controls to mitigate risks. In this detailed guide, we will explore essential steps and best practices to perform a base security assessment. We will enable you to deploy effective security solutions tailored to your environment.

Read Post