Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

keeper

How To Prevent Account Takeover Attacks

Aug 22, 2024 By Ashley D'Andrea In Keeper
An account takeover attack is a type of identity theft that occurs when a cybercriminal gains access to your online account and changes your login credentials to lock you out. Once you cannot log back in, a cybercriminal will use your identity to steal private information or even scam others. You can prevent account takeover attacks by using strong passwords, enabling Multi-Factor Authentication (MFA) and investing in dark web monitoring.
Read Post
parablu

How Multifactor Authentication (MFA) Can Reduce Your Cyber Attacks Risk?

Aug 22, 2024 By Parablu In Parablu
Did it ever cross your mind to ask if your password can defend your sensitive info on the web all by itself? In the digital world of today, where cyber threats are rapidly developing, the traditional way of protecting the system with single password has become more and more insecure. Therefore, it is the user who is more exposed to such cyberattacks. Just to mention, more than 81% of data breaches are associated with weak or stolen passwords.
Read Post
WatchGuard

This New Wi-Fi Attack Can Intercept Data Traffic

Aug 20, 2024 By Kirk Jensen In WatchGuard
The growing complexity of networks and connected devices makes implementing effective cybersecurity an increasingly complicated task. While businesses have shown more awareness of the need to elevate their security posture in recent years, several fundamental cyber hygiene issues still need to be addressed.
Read Post
tripwire

UK Businesses Face New Cyber-Attacks Every 44 Seconds in Q2 2024

Aug 20, 2024 By Kirsten Doyle In Tripwire
In the second quarter of 2024, UK businesses faced cyber-attacks every 44 seconds, highlighting the persistent nature of cyber threats and the critical need for robust cybersecurity protocols. This frequency of attacks shines the spotlight on the ongoing challenge UK businesses face in protecting their digital assets. It also stresses the importance of implementing comprehensive security measures to protect against increasingly sophisticated and frequent cyber threats.
Read Post
knowbe4

Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Aug 15, 2024 By Stu Sjouwerman In KnowBe4
Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites. We saw earlier this year that phishing attacks leveraging XSS were on the rise. Now, new scams are using XSS to hide their malicious intent within emails, according to new analysis from cybersecurity vendor INKY. These attacks usually begin with an email stating the victim has won something, as shown below: Source: INKY.
Read Post
netacea

How Attackers Use APIs to Disguise Bots as Games Consoles

Aug 13, 2024 By Alex McConnell In Netacea
Attackers and bot authors are continually evolving their methods, shifting their focus beyond just websites. With websites often having a reasonable level of protection, malicious actors are increasingly targeting less-protected areas, namely APIs, with their bots. This blog post delves into the evolving threat landscape. We’ll focus on how attackers exploit APIs and IoT devices to launch attacks like credential stuffing, using streaming services as a prime example.
Read Post
outpost 24

CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery

Aug 13, 2024 By Jimmy Bergqvist In Outpost 24
Cross-Site Request Forgery (CSRF) is a serious web security vulnerability that allows attackers to exploit active sessions of targeted users to perform privileged actions on their behalf. Depending on the relevancy of the action and the permissions of the targeted user, a successful CSRF attack may result in anything from minor integrity impacts to a complete compromise of the application.
Read Post
securitysenses

Thwarting Cyberattacks: Top In-House Solutions

Aug 13, 2024 By SecuritySenses In SecuritySenses
There is no doubt that the number (and severity) of cyberattacks is on the rise. While the lion's share of attention has been devoted to major breaches that often impact multinational organisations, the fact of the matter is that small- to medium-sized enterprises are also at risk. This is why managers and stakeholders must adopt the latest safety protocols to avoid incidents that might otherwise quickly bring operations to a halt. Let us look at four practical suggestions, and the unique benefits associated with each.
Read Post
Trustwave

The Art of Deception: Turning the Tables on Attackers with Active Defenses

Aug 12, 2024 By by David Broggy In Trustwave
Once an attacker enters your network, one of their first actions will be to try and hide their tracks by blending in, using methods of deception such as mimicking normal user activities. A cyber defender can also use methods of deception to detect and slow the advance of these adversaries. This is known as an active defense. This article will discuss some methods of using Active Defences, sometimes referred to as ’deceptions,’ as one part of a comprehensive cyber defense strategy.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.