Cybersecurity
ALERT! – Critical Zero Day Vulnerability Reported by Google in Libwebp
A critical zero day vulnerability that was already exploited in the wild and patched in Chrome by Google has a new CVE ID (CVE-2023-5129). This issue is not a zero…
Read moreAmazon AWS S3 Buckets Used To Deliver Malware Through S3 Buckets
Malicious threat actors are exploiting expired Amazon AWS S3 buckets to place malicious code into legitimate packages in the npm repository with out having to make modifications to any of…
Read morePart 4 De-Anonymizing Domains on the Dark Web – Catastrophic OPSEC Failures
Catastrophic OPSEC (Operational Security) Failures Sometimes Ransomware gangs make catastrophic security mistakes that unmasks their anonymity. In this last post we will look at how such operational security failures such as…
Read morePart 3 De-Anonymizing Domains on the Dark Web – Favicon matching
Favicon Matching The second method that is used to uncover a dark web based website on the surface internet (clear internet) is the process of "favicon matching". A favicon is…
Read morePart 2 De-Anonymizing Domains on the Dark Web – TLS Certificate Matching
The first approach used by Cisco's Talos Threat Intelligence team was that of TLS certificate matching. With this approach the self signed certificate that is used by their dark web…
Read moreThe Ability to De-Anonymize Domains on the Dark Web
Members of the Cisco Talos Threat Intelligence team have developed 3 techniques to identify ransomware operators websites hosted on the dark web and their respective IP Addresses. This has given…
Read moreFAQ – What are YARA Rules?
YARA is a pattern matching framework. It is used to identify and classify malware and other IT Security threats. It has a long standing history in the IT security landscape…
Read moreProtecting your Credit Card Details
With various malicious threat actors continuously evolving their attack techniques it is becoming extremely important to keep our credit card details safe in our highly networked world. With how convenient…
Read moreCyber Insurance, and its Critical Role In Front Line Cyber Defenses
Cybersecurity, cyber insurance and ransomware tend to go hand in hand. Both security and insurance providers work tirelessly to reduce the impact of ransomware on businesses which is one of…
Read moreWhat is the Difference Between Attack Surface Management & Vulnerability Management
With how quickly software and businesses evolve, this causes problems with the traditional IT asset and vulnerability management practices. As a result this has opened a new technological segment known…
Read more