The Role of the Network in Preventing Dyn 2.0
Much has been said about the DDoS attacks on Dyn and the subsequent security issues surrounding IoT devices. In late 2016, hackers exploited hundreds of thousands of IoT devices, such as security cameras and DVRs, to cause massive internet outages over a prolonged period of time. While this attack has resulted in an uproar of…
Why do I care about someone else’s data breach?
Because as the size of your organization increases, the probability that an individual employee’s company email is in that breach rises to 1. That lone employee is going to be suffering some unfortunate impacts, from identity theft, financial scams, blackmail, and even death threats (as seen in the Ashley Madison breach). There’s an organizational impact…
How trolls, hackers and spies are rewriting the rules of conflict
Estonia is a country of around 1.3 million people, facing the Baltic Sea and the Gulf of Finland, it borders Latvia to the south and Russia to the east. After decades as part of the Soviet Union, it regained independence in 1991. But Estonia does not intend to be defined by its past, but is…
A New Mantra For Cybersecurity: ‘Simulate, Simulate, Simulate!’
What security teams can learn from the Apollo 13 space program, a global pandemic, and major infrastructure disruptions to identify their best responses to attacks. Over the long holidays in December (and thanks to the massive California storms) I had the chance to re-watch some great movies, including Apollo 13 – one of my all-time…
The Interconnected Nature Of International Cybercrime
Flashpoint analysts monitoring a top-tier Russian hacking forum recently observed an actor who goes by the pseudonym “flokibot,” developing a Trojan known as “Floki Bot.” While the malware uses source code from the ZeuS Trojan, the actor reinvented the initial dropper process injection to instead target point-of-sale (PoS) terminals. The Floki Bot Trojan is not…
A look back at the Zyns iframer campaign
We often get asked about drive-by download attacks, how they work, and specifically about what sites people may have visited just prior to getting infected. This is an interesting aspect when tracking campaigns and what they lead to. Typically, one can divide the drive-by landscape into two categories: malvertising and compromised websites. The former involves legitimate websites…
Threat Actors will come up with new Targeted Attack Tactics that Circumvent Current Anti-evasion Solutions
In the Trend Micro 2017 Security Predictions report, we cover many of the threats that organizations will have to deal with this year and none could be more challenging that a targeted attack. We recently saw a report from the Identity Theft Resource Center which said 2016 had the most data breaches in US history….
IDG Contributor Network: What football teaches us about cybersecurity
This idea of football practice and cybersecurity practice came to me via a conversation with one of my co-workers at Verodin, an SE in Texas named Critt Golden. Critt said it very simply in true Texas succinctness, “In football if you don’t practice you don’t win and in cybersecurity if you don’t practice you don’t…
How Cybercriminals Turn Employees Into Rogue Insiders
The Dark Web is a growing threat to organizations as hackers recruit insiders with access to corporate networks. Cybercriminals are ramping up efforts to recruit employees with access to corporate networks. The Dark Web, which promises anonymity to rogue insiders, is driving that trend.