%term

Living-off-the-land Attacks: The Challenge and WatchGuard Advanced EPDR

Sep 25, 2024 By Iratxe Vazquez In WatchGuard

In cybersecurity, "Living-off-the-land" (LotL) attacks have become increasingly difficult to detect. These attacks exploit legitimate system tools like PowerShell, WMI, or Office macros instead of relying on external malware, allowing attackers to move stealthily within a network. Traditional security measures struggle to identify these attacks, as they use trusted, digitally signed tools. LotL attacks appeal to cybercriminals because they evade detection and reduce the risk of being traced.

Read Post

WatchGuard

Read more about Living-off-the-land Attacks: The Challenge and WatchGuard Advanced EPDR

Why Choose a Cloud-Native Approach to Fend Off API Attacks

Sep 25, 2024 By Eric Schwake In Salt Security

As organizations adopt a “digital-first” mentality, APIs have essentially become the backbone of modern applications, providing seamless integration between services, platforms, and third-party systems. For businesses, APIs help streamline processes and for consumers, APIs enable smooth and easily accessible digital services. However, an increased reliance on and growing number of APIs has also made them prime targets for cyberattacks.

Read Post

Salt Security

Read more about Why Choose a Cloud-Native Approach to Fend Off API Attacks

Understanding Network Attacks: Types, Trends, and Mitigation Strategies

Sep 25, 2024 By Kirsten Doyle In Tripwire

At a time when digital connectivity is the lifeblood of all business operations, the specter of network attacks is greater than ever. As entities depend on complex network infrastructures, malefactors exploit vulnerabilities with growing sophistication and frequency. Understanding the diverse nature of these threats—from DoS and DDoS attacks to reconnaissance exploits—is crucial for devising effective defense strategies.

Read Post

Tripwire

Read more about Understanding Network Attacks: Types, Trends, and Mitigation Strategies

FINRA Warns of Rising Risks as Third-Party Cyberattacks Threaten Financial Services

Sep 25, 2024 By Trustwave In Trustwave

Earlier this month, the Financial Industry Regulatory Authority (FINRA) posted a cybersecurity advisory highlighting the recent cybersecurity risks of third parties impacting its members and financial services organizations. The recently released Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Financial Services Sector underscores FINRA's concern about the escalating threat landscape facing the financial industry.

Read Post

Trustwave

Read more about FINRA Warns of Rising Risks as Third-Party Cyberattacks Threaten Financial Services

The University of Manchester sets cybersecurity standard in Higher Education with the Tanium platform

Sep 24, 2024 By Tanium In Tanium

Tanium XEM platform enables higher education institution to identify and protect nearly 40,000 endpoints using joint solutions with Microsoft and ServiceNow.

Read Post

Tanium

Read more about The University of Manchester sets cybersecurity standard in Higher Education with the Tanium platform

Falcon Exposure Management - Predictors of Attack

Sep 24, 2024 By CrowdStrike In CrowdStrike

Falcon Exposure Management empowers enterprises with real-time insights to confidently manage risk by creating a near digital twin of your IT and security landscape. Predictors of Attack leverages OverWatch and Intelligence Patterns to analyze potential intrusion vectors, transforming complex data into clear investigation and remediation priorities. Guided Remediation then pre-calculates the most effective solutions, turning priorities into actionable plans—all to stop breaches before they start.

View Video

CrowdStrike

Read more about Falcon Exposure Management - Predictors of Attack

Warnings After New Valencia Ransomware Group Strikes Businesses and Leaks Data

Sep 24, 2024 By Graham Cluley In Tripwire

A new ransomware operation has started to leak information it claims has been stolen from organisations it has compromised around the world. In recent days Valencia Ransomware has posted on its dark web leak site's so-called "Wall of shame" links to gigabytes of downloadable information that has seemingly been exfiltrated from a Californian municipality, a pharmaceutical firm, and a paper manufacturer.

Read Post

Tripwire

Read more about Warnings After New Valencia Ransomware Group Strikes Businesses and Leaks Data

The Machine War Has Begun: Cybercriminals Leveraging AI in DDoS Attacks

Sep 24, 2024 By Jamison Utter In A10 Networks

In the digital landscape, the integration of Artificial Intelligence (AI) into cybercriminal activities has marked the beginning of a new era of threats. The “machine war” has indeed commenced, with AI enhancing the scale and sophistication of cyberattacks. Distributed denial of service (DDoS) attacks, in particular, have become more formidable with AI’s capabilities, presenting significant challenges for cybersecurity defenses.

Read Post

A10 Networks

Read more about The Machine War Has Begun: Cybercriminals Leveraging AI in DDoS Attacks

Educate Your Users About Malicious SEO Poisoning Attacks

Sep 23, 2024 By Roger Grimes In KnowBe4

Since the beginning of computers, social engineering has been the number one way that computers and networks have been compromised. Social engineering is involved in 70% to 90% of all successful data breaches. Nothing else is even close (unpatched software and firmware are involved in 33% of successful attacks, everything else is 1% or less).

Read Post

KnowBe4

Read more about Educate Your Users About Malicious SEO Poisoning Attacks

4 Ways Ethical Hacking Services Helped Businesses Prevent Cyber Attacks

Sep 22, 2024 By SecuritySenses In SecuritySenses

As technology continues to advance at a rapid pace, so do the tactics of cybercriminals. For businesses of all sizes, the threat of a cyber attack is growing more and more concerning. Through the use of ethical hacking techniques, companies can identify vulnerabilities in their systems. They can also address them before malicious hackers exploit them. In this post, we will explore the ways ethical hacking services have become a valuable asset in the fight against cyber attacks.

Read Post