Security News

Out of over a thousand top-level domain choices, cyber-criminals and threat actors prefer a small set of 25, which accounts for 90% of all malicious sites. "First, we only study domains categorized by the Advanced URL Filtering service, and we only consider registered domains. Additionally, we validate whether domains existed the past one year by checking zone files and passive DNS, and by issuing active DNS queries. We do not consider domains that we categorize as parked, insufficient content or unknown for our calculations," explains the research by Palo Alto Networks Unit42.

Link11 has released new data from its network on the development of the DDoS threat: The number of attacks remains at a very high level in Q3 2021. While single attack methods are declining, multi-vector attacks are becoming the norm in the DDoS threat landscape.

As the 2021 holiday season approaches, supply chain and logistics, e-commerce and retail, and the travel industry see predictable increases in consumer and business activity - making them more vulnerable to cyber threats and leaving business, employee and consumer data at risk. In addition to increased consumer spending, the 2021 holiday season sees a significant impact on industries coping with the increase in consumer demands.

"As we stand at an inflection point in the way the world does business, enterprises have more opportunities than they think to get ahead of the competition and continue improving," said Mike Rulf, CTO of Americas at Syntax. "An honest assessment of capabilities now will only accelerate innovation in the future."

The Global Threat Landscape Report indicates a drastic rise in sophisticated cyberattacks targeting digital infrastructures, organizations, and individuals in 2021. Organizations struggle to address these threats due to their resource sophistication and their lack of understanding of evolving threat landscapes.

Research released Wednesday by security provider Armis looks at the ways that hospitals and patients are vulnerable to cyber threats. A full 85% of the healthcare respondents said they've seen an increase in cyber risk over the past 12 months.

Researchers discovered new Android spyware that provides similar capabilities to NSO Group's Pegasus controversial software. PhoneSpy disguises itself as a legitimate application and gives attackers complete access to data stored on a mobile device and grants full control over the targeted device, according to a Zimperium zLabs report published Wednesday.

The report isn't just one researcher's work, or even one department's work, but the combined effort of SophosLabs, Sophos Managed Threat Response, Sophos Rapid Response, and Sophos Artificial Intelligence. Don't take Joe's word for it read the report and see how we live up to those three principles!

Continuous software development results in the frequent release of new API versions. API sprawl introduces significant operational and security challenges.

Banking malware threats are sharply increasing as cybercriminals target the rising popularity of mobile banking on smartphones, with plots aimed at stealing personal banking credentials and credit card information, a Nokia report reveals. The report, based on data aggregated from network traffic monitored on more than 200 million devices globally, showed an 80%, year-on-year increase in the first half of the year in the number of new banking trojans, which also try to steal SMS messages containing one-time passwords.