Clickjacking Attacks: What They Are and How to Prevent Them

Clickjacking Attacks: What They Are and How to Prevent Them

Clickjacking refers to any attack where the user is tricked into unintentionally clicking an unexpected web page element. The name was coined from click hijacking, and the technique is most often applied ...
How Buffer Overflow Attacks Work

How Buffer Overflow Attacks Work

A computer program may be vulnerable to buffer overflow if it handles incoming data incorrectly. Anybody who can provide suitably crafted user input data can cause such a program to crash. Even ...
Protecting Your Website Using an Anti-CSRF Token

Protecting Your Website Using an Anti-CSRF Token

It is crucial to make sure that your website or web application security policy includes measures against Cross-Site Request Forgery (CSRF/XSRF) attacks. These attacks may not be dangerous to you directly, but ...
What is a Man-in-the-Middle Attack and How To Avoid It?

What is a Man-in-the-Middle Attack and How To Avoid It?

A man-in-the-middle attack (MiTM) happens when an attacker modifies a connection so that it goes through their computer. They can steal sensitive information and change data on the fly. For example, imagine ...
MITRE ATT&CKcon 2018

ATT&CK Structure Part I: A Taxonomy of Adversarial Behavior

| | Attack, MITRE, MITRE Framework
Following last year’s exceedingly successful inaugural MITRE ATT&CK™ conference, this year’s highly anticipated ATT&CKcon 2.0 conference will be held from Oct 28-30 at MITRE’s McLean headquarters. MITRE’s always open to hearing feedback ...
No One is Safe: the Five Most Popular Social Engineering Attacks Against Your Company’s Wi-Fi Network

No One is Safe: the Five Most Popular Social Engineering Attacks Against Your Company’s Wi-Fi Network

Your Wi-Fi routers and access points all have strong WPA2 passwords, unique SSIDs, the latest firmware updates, and even MAC address filtering. Good job, networking and cybersecurity teams! However, is your network ...
Clickjacking Attack on Facebook: How a Tiny Attribute Can Save the Corporation

Clickjacking Attack on Facebook: How a Tiny Attribute Can Save the Corporation

The clickjacking attack introduced in 2002 is a UI Redressing attack in which a web page loads another webpage in a low opacity iframe, and cause changes of state when the user ...
Hacking The Hacker. Stopping a big botnet targeting USA, Canada and Italy

Hacking The Hacker. Stopping a big botnet targeting USA, Canada and Italy

| | Attack, Cyber Crime, USA
Today I'd like to share a full path analysis including a KickBack attack which took me to gain full access to an entire Ursniff/Gozi BotNet . In other words: from a simple ...
Larry Bianculli

Podcast: CISO Speak – Incident Response

This months podcast features host Larry Bianculli speaking with guest CISO Agim Bracovic from Rabobank, as well as our very own Matthew Pascucci, cybersecurity practice manager, at CCSI, on Incident Response. How ...
Man Pleads Guilty to Sicking Army of Spambots on Twitch

Man Pleads Guilty to Sicking Army of Spambots on Twitch

A 20-year-old man has pleaded guilty to targeting more than a thousand members of streaming video platform Twitch with an army of spambots. On 1 May, Brandan Lukas Apple confessed to a ...
Loading...