Blog, Cyber threats, DNS and Threat Detection

Blog

Cyber threats

DNS

Threat Detection

Stories from the SOC – DNS recon + exfiltration

CyberSecurity Insiders

MARCH 13, 2021

Stories from the SOC is a blog series that describes recent real-world security incident investigations conducted and reported by the AT&T SOC analyst team for AT&T Managed Threat Detection and Response customers. The post Stories from the SOC – DNS recon + exfiltration appeared first on Cybersecurity Insiders.

DNS

DNS Threat Detection Cybersecurity Cyber threats

Why Small and Medium Sized Businesses Need More Than Just an AntiVirus Solution

Security Boulevard

FEBRUARY 23, 2023

Thankfully, nearly all malware depends on DNS at some point in their kill chain, making the protocol a critical vector for shutting down these threats. Some of the common forms these DNS-based attacks can take include: DNS spoofing: A malicious actor alters DNS records to redirect traffic to a fake website or server.

Antivirus

Antivirus DNS Threat Detection Small Business

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

Proactive Intelligence: A Paradigm Shift In Cyber Defense

Security Boulevard

MARCH 6, 2024

Traditionally, cybersecurity has been a reactive game: We respond to cyber threats as they arise, analyze the incidents, add pertinent information to “deny lists”, and update stakeholders on “what happened.” That's where technologies like protective DNS come in. It may sound difficult, but change always sounds hard at first.

DNS

DNS Phishing Data breaches Cyber threats

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

HYAS Threat Intel Report May 20 2024

Security Boulevard

MAY 20, 2024

Weekly Threat Intelligence Report Date: May 20, 2024 Prepared by: David Brunsdon, Threat Intelligence - Security Engineer, HYAS Cyber Threat Intelligence Analysis This week in the HYAS Insight threat intelligence platform, we found a concerning open directory hosting multiple pieces of malware. Malware Analysis 1.

DNS

DNS Malware Education Phishing

Strengthening Cyber Resilience: A Milestone Partnership

Security Boulevard

APRIL 18, 2024

The timing of this collaboration is particularly significant, given the escalating cyber threats facing organizations across the region. With cyber attacks becoming increasingly sophisticated and frequent, there is an urgent need for proactive defense mechanisms that adapt to evolving threats in real-time.

Digital transformation

Digital transformation Architecture Cyber threats DNS

PCI DSS reporting details to ensure when contracting quarterly CDE tests

CyberSecurity Insiders

APRIL 14, 2023

This is the second blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. There are several issues implied in the PCI DSS Standard and its associated Report on Compliance which are rarely addressed in practice.

Penetration Testing

Penetration Testing DNS Passwords Accountability

Global outbreak of Log4Shell

CyberSecurity Insiders

DECEMBER 16, 2021

According to a Netlab blog on December 13, 2021, Netlab identified 10 different implants using the vulnerability to spread: Muhstik, DDoS+backdoor. rmi|dns):/[^n]+' /var/log. Review detections of suspicious child processes spawned by Java. We can observe the growth of JNDI related scans cross the internet: Figure 1.

DDOS

DDOS DNS Internet Internet

Endangered data in online transactions and how to safeguard company information

CyberSecurity Insiders

JANUARY 6, 2022

This blog was written by an independent guest blogger. HTTPS and DNS), data link (e.g., Online transactions are essential for every modern business. From online shopping to banking, transferring funds, and sending invoices, online transactions ensure utter convenience and efficiency. Avoid storing payment data from your customers.

Encryption

Encryption Identity Theft Authentication Data breaches

The Case for Multi-Vendor Security Integrations

Cisco Security

AUGUST 26, 2022

The AlienApp for Cisco Secure Endpoint enables you to automate threat detection and response activities between USM Anywhere and Cisco Secure Endpoint. This new integration supports Umbrella proxy, cloud firewall, IP, and DNS logs. They include various items like DKIM key inspections, DNS Resource Records and more.

Firewall

Firewall Authentication Passwords Threat Detection

Identity and Access Management (IAM) in Payment Card Industry (PCI) Data Security Standard (DSS) environments.

CyberSecurity Insiders

APRIL 6, 2023

This is the first of a series of consultant-written blogs around PCI DSS. GoDaddy, Network Solutions) DNS service (E.g., GoDaddy, Network Solutions) DNS service (E.g., Many organizations have multiple IAM schemes that they forget about when it comes to a robust compliance framework such as PCI DSS.

Accountability

Accountability DNS DDOS VPN

Cyber Security Informer

Stories from the SOC – DNS recon + exfiltration

Why Small and Medium Sized Businesses Need More Than Just an AntiVirus Solution

Webinars

Trending Sources

Proactive Intelligence: A Paradigm Shift In Cyber Defense

Webinars

HYAS Threat Intel Report May 20 2024

Strengthening Cyber Resilience: A Milestone Partnership

PCI DSS reporting details to ensure when contracting quarterly CDE tests

Global outbreak of Log4Shell

Endangered data in online transactions and how to safeguard company information

The Case for Multi-Vendor Security Integrations

Identity and Access Management (IAM) in Payment Card Industry (PCI) Data Security Standard (DSS) environments.

Stay Connected