A smurf attack was initially a C-based code written by renowned hacker Dan Moschuk, aka TFreak, in 1997. The attack got its name from the 1980s cartoon “The Smurfs” since Dan Moschuk saw the flood of packets, like the tiny Smurfs, overwhelming a mammoth opponent through sheer numbers. He named the original file as Smurf.c in relation to that. A …

APIs are the backbone of today’s web and mobile development, and REST API accounts for around 80 percent. However, a recent analysis from Salt security shows that more than 90 percent of the organizations had an API security incident in the year 2020. Read on to learn how to secure REST API and RESTful API from threat actors. A REST …

It’s been close to two decades since the Internet first noticed the existence of Botnets. They not only stand the test of time but still act as one of the most powerful tools for threat actors. In this article, we bring you all the information you need to know about them. A Botnet is a network of inter-connected systems established …

Legacy systems have long been a major concern for organizations across the globe. We have conducted thorough research and collected opinions from experts to bring you the most effective ways to secure your legacy applications and systems. As a general rule, the six-step process to Identify, Isolate, Assess, Secure, Monitor, and Modernise, is the most effective way to secure the …

According to a Bloomberg Report on Friday, CNA Financials has paid a Ransom of 40 Million USD. They paid it in March after two weeks of loosing their data and getting locked out. CNA Financials is a Chicago based US Insurance Giant. CNA has refused to comment on the Ransom and said that their actions were in accordance with the …

Last week we reported the colonial pipeline Ransomware Attack which eventually disrupted the operations for around 6 days and made the pipeline cough up $5 Million in Ransom. Darkside Ransomware Service, responsible for the attack has reportedly announced the closure of their affiliate program. DarkSide also said, they are releasing decryption tools for all of the companies that have been …

Welcome to our weekly update blogs on key security news and issues oberved last week. Colonial Pipeline Ransomware Attack Colonial Pipeline, the operator of a major pipeline system that transports fuel from Texas to the East Coast said Saturday it had been victimized by a Ramsomware Attack and had halted all pipeline operations to deal with the attack. The company …

This post will discuss Hybrid Ransomware and Ransomware in general and share some best practices and information around decrypting encrypted data. Ransomware is a favourite of Cybercriminals, and Ransomware attacks are on the rise. A recent cyber threat analysis by Deep Instinct observed that malware attacks increased by 358% overall in 2020, and Ransomware increased by 435% compared to 2019. …

Our list of top 10 Cybersecurity skills covers what is in demand and expected to continue being in demand for 2021 and beyond. All approximate salaries are for US Market 1. DevSecOps We see a growing demand of security professionals familiar with DevOps principles, who can collaborate effectively with software engineering teams. Often engineering departments are focused on bringing a …

Microsoft Sharepoint Targeted with Phishing Attacks Researchers at Cofense, discovered a phishing campaign which seems to be successfully passing the email defence and Secure Email Gateways including Microsoft. This phish attack is targeting Office 365 users with a SharePoint document that claims to be urgently in need of an email signature.  Flubot is in the Air Malware Flubot (or Cabassous) …