Dark web vendors offer a wide range of technological crime. From distributed denial of service attacks to pre-recorded phone calls, there is a myriad of knowledge and listings for hacking & exploits.
This report aims to bring a more rigorous and scientific approach to analyzing content on the dark web.
Download...
Learn how fileless techniques work and why they present such a complex challenge
The arms race between cybersecurity vendors and determined adversaries has never been more heated. As soon as a new security tool is released, threat actors strive to develop a way around it. One advanced threat technique that is...
DDoS extortion comes in many forms. Campaigns over the past three years have varied in their nature and continue to evolve over even the past few months. What lessons can be learned from the latest attacks? Dennis Birchard of Akamai shares insights on the attacks and the newest defenses.
An investment firm needed a managed endpoint detection and response solution that could integrate into its existing security program, which already included two managed providers.
Download this case study to learn how the firm was able to:
Seamlessly integrate their new solution alongside other managed...
A global financial institution with over 3,000 endpoints across 30 countries had a network that was large, distributed, and vulnerable to attacks. A multi-state bank had already invested in application white-listing, but gaps remained and endpoints were vulnerable.
So how were both institutions able to solve their...
The Carbon Black Threat Research Team, in conjunction with more than two dozen managed security services provider (MSSP) and incident response (IR) partners, is increasingly seeing PowerShell exploitation during cyber attacks.
This supports a growing industry trend of malware authors creatively attempting to evade...
In 2014, the Department of Defense (DoD) issued instructions that replaced DoD Information Assurance Certification and Accreditation Process (DIACAP) with the Risk Management Framework (RMF). The RMF is designed to be managed as a continual process as the risk posture evolves over time for each information...
The fact that Federal agencies are prime targets for the most sophisticated cyber threats is undeniable. If cyberattacks are inevitable, then robust capabilities for security investigation, threat hunting, and rapid response are essential. Government cybersecurity professionals require visibility across their silos of...
Micro-segmentation is fast becoming a foundational layer of the security architecture for today's data center and cloud computing environments. It has seen a big push by a range of vendors as well as growing recommendations from leading analyst firms such as Gartner, ESG, and the 451 Group.
The idea of using network...
In separate cases, two hackers have either pleaded guilty or been sentenced to serve jail time in part for launching or facilitating DDoS attacks. One defendant, John Kelsey Gammell, was unmasked after taunting a former employer over the "ongoing IT issues" his DDoS attacks were causing.
Spear phishing is the common trigger to many of the most popular - and successful - targeted attacks. How can organizations improve their defenses to better spot - and stop - spear phishing?
Spear phishing and messaging-based threats tend to be the first attack vector that criminals are using today in targeted...
The browser is the window to the web. But what's going in the background during that browsing is opaque to most users. A new experiment shows how the computing power of tens of thousands of computers could be unknowingly harnessed to crack passwords, harvest cryptocurrencies or conduct DDoS attacks.
2017's attacks will only increase in scale and scope in 2018. Organizations need to prepare now to defend against the next evolution of web application layer, credential abuse, and DDoS attacks.
Download this whitepaper and learn about:
DDoS trends for 2018;
The role IoT will play;
Ways to protect your APIs.
If the website is the front door, the API is the back door. And a lot of times that back door is left unlocked, which is problematic because an API drives a multitude of user experiences.
Download this whitepaper and learn:
Specific steps organizations can take to improve API security and performance;
Four hidden...
Security vendor products are held to a higher standard of security. They must help their customers solve complex security problems, as well as have the most stringent security measures in place throughout the software development lifecycle. To meet those standards, many security vendors are turning to more innovative...