DDoS Archives - Page 5 of 6 - Cyber Security Minute

U.S. Warns of North Korea’s ‘Hidden Cobra’ Attacks

Issued by: Security Week

The United States Computer Emergency Readiness Team (US-CERT) released a technical alert on Tuesday on behalf of the DHS and the FBI to warn organizations of North Korea’s “Hidden Cobra” activities, particularly distributed denial-of-service (DDoS) attacks. The threat actor dubbed by the U.S. government “Hidden Cobra” is better known in the infosec community as Lazarus…

Vulnerabilities

5 Unsettling cyberthreats

Issued by: Blog Malwarebytes

Cyberthreats are typically boring, repetitive, and require a reasonably predictable remediation process. A SQL injection is a SQL injection, no matter who’s trying it. But what about the outliers? What about threats that impact you, but you can’t remediate, or establish a policy to cover? Here are 5 cyberthreats that if you’re not frightened by,…

Network Security

BrandPost: Best of Both Worlds: Hybrid Onsite and Cloud-based DDoS Protection

Issued by: CSO

When familiarity breeds complacency, you may have a serious problem countering cyber threats. For example, the first denial of service (DoS) attack occurred more than four decades ago. By 1999, this mode of attack morphed into distributed denial of service (DDoS) assaults that enlisted multiple agents to deluge a target with crippling traffic. DDoS attacks…

Network Security

The top 5 dumbest cyber threats that work anyway

Issued by: Blog Malwarebytes

The common conception of cyber attacks is kind of like bad weather: ranging from irritating to catastrophic, but always unpredictable. Hackers are simply too sophisticated to draw any reliable judgments on and we shouldn’t try. As it turns out, some hackers are fairly predictable in their successful use of really dumb attacks. Here’s a few.

Vulnerabilities

Vulnerability Management and Triage in 3 Steps

Issued by: Black Duck

Security testing tools can help organizations build better software by identifying vulnerabilities early in the SDLC. For security professionals and developers, however, the hard work begins when the testing is complete. Once you have a list of vulnerabilities across multiple applications, what’s your next step in vulnerability management and triage? And how do you ensure…

Malware & Threats

DDoS Malware Targets AVTech CGI Vulnerability

Issued by: Security Week

A newly discovered Linux malware family is targeting products from surveillance technology company AVTech via a CGI vulnerability that was disclosed in October 2016, Trend Micro researchers warn. Detected as ELF_IMEIJ.A, the malware is the latest in a long list of Trojans targeting Linux ARM devices (such as Mirai, Umbreon rootkit, LuaBot, BashLite, and more)….

Network Security

The Role of the Network in Preventing Dyn 2.0

Issued by: Security Week

Much has been said about the DDoS attacks on Dyn and the subsequent security issues surrounding IoT devices. In late 2016, hackers exploited hundreds of thousands of IoT devices, such as security cameras and DVRs, to cause massive internet outages over a prolonged period of time. While this attack has resulted in an uproar of…

Malware & Threats

Tech support scam page triggers denial-of-service attack on Macs

Issued by: Blog Malwarebytes

Tech support scammers have been using various themes to push fake alerts to scare users into calling for assistance. These fall into the ‘browlock’ category if they are via the browser and into the screen lockers category if they are actual malware that runs on the system. Recently, there has been a trend for scammers to cause…

Network Security

DDoS attacks via WordPress now come with encryption

Issued by: Help Net Security

Kaspersky Lab experts have noted an emerging trend – a growth in the number of attacks using encryption. Such attacks are highly effective due to the difficulty in identifying them amongst the overall flow of clean requests. Recently, the company encountered yet more evidence of this trend – an attack exploiting vulnerabilities in WordPress via…

Vulnerabilities

Despite the DDoS attacks, don’t give up on Dyn or DNS service providers

Issued by: CSO

The DDoS attacks that flooded Dyn last month and knocked some high-profile Web sites offline don’t mean businesses should abandon it or other DNS service providers, Gartner says. In fact, the best way to go is to make sure critical Web sites are backed by more than one DNS provider, says Gartner analyst Bob Gill.