Latest

Cybercrime

Massive Surge in Use of Linux XorDdos Malware Reported

Prajeet Nair  •  May 21, 2022

Microsoft has observed a 254% increase in activity over the past six months from a Linux Trojan called XorDdos. First discovered in 2014, XorDdos was named after its denial-of-service-related activities on Linux endpoints and servers and its usage of XOR-based encryption for its communications.

Critical Infrastructure Security

Ukraine and Romania Suffer Large-Scale DDoS Attacks

Prajeet Nair  •  April 30, 2022

The Computer Emergency Response Team of Ukraine and the National Bank of Ukraine are warning of massive DDoS attacks against pro-Ukrainian targets. The intelligence service in Romania, SRI, also warns of a similar type of attack targeting sites belonging to its national authorities.

Critical Infrastructure Security

Five Eyes Warns of Russian Hacks on Critical Infrastructure

Michael Novinson  •  April 21, 2022

Russian government hackers and cybercrime groups are teaming up to launch cyberattacks against the West in retaliation for its support of Ukraine. Some cybercrime groups have pledged to support the Russian government and threatened to go after countries providing material support to Ukraine.

►

Account Takeover Fraud

Increase in Account Opening Fraud, Payment Scams Continues

Suparna Goswami  •  May 26, 2022

A majority of financial institutions have reported a rise in account opening fraud and payment scams, which is expected to continue and cause losses for banks, says Trace Fooshee, strategic adviser at Aite-Novarica Group. He discusses new technologies to put in place to mitigate scam attacks.

Customer Identity & Access Management (CIAM)

Tackling the Identity Verification Challenge

Tom Field  •  May 23, 2022

Accelerated digital transformation has only complicated the identity verification challenge for enterprises. But Chuck Moore of Early Warning says behavioral analytics and anomaly detection combined can reduce both fraud and the friction that can come with traditional authentication methods.

Endpoint Security

The Biggest Challenge to Adopting Security Tech in Manufacturing

Joel Burleson-Davis  •  May 16, 2022

It’s only a matter of time before plants, critical infrastructure, and factories evolve into more interconnected and digital spaces.

3rd Party Risk Management

Gain a Competitive Advantage with Third-Party Security

Tori Taylor  •  May 11, 2022

Third parties need to equip themselves with the technology that is mindful of the current third-party risk landscape.

Access Management

How to Identify Critical Access Points

Tori Taylor  •  May 11, 2022

The more privileges needed, the more critical the access point is — and the more protection it needs.

DDoS Protection

Pro-Ukraine Groups Exploit Containers to Launch DoS Attacks

Mihir Bagwe  •  May 6, 2022

Containers and cloud-based resources are being used to launch DoS attacks against Russian, Belarusian and Lithuanian websites. Cybersecurity firm CrowdStrike's researchers say that through their Docker Engine honeypots, they observed two different Docker images targeting these assets.

Critical Infrastructure Security

Cybersecurity Mesh is the Next Big Trend In Cybersecurity

Isa Jones  •  April 11, 2022

Ditch the old “castle-and-moat” methods. Instead, focus on critical access points and assets, making sure each individual point is protected from a potential breach.

3rd Party Risk Management

How to Maximize Application Intelligence

Tom Field  •  April 8, 2022

At a time when applications are more business-critical than ever - and visibility is more challenging to achieve - we need to discuss new strategies and tools for maximizing application intelligence. Sujay Pathakji of Axiom Telecom and Srudi Dineshan of Gigamon share insights.

3rd Party Risk Management

Why Third Parties Are an Organization's Biggest Risk Point

Tori Taylor  •  April 8, 2022

Hackers are exploiting third-party remote access. If you’re not taking third-party risk seriously, it’s just a matter of time until your company is the next headline.