What is a low and slow attack?
A low and slow attack is a DDoS attack that aims to stop a web service using extremely slow HTTP or TCP traffic. What is a low and slow attack?…
Protocols, How They Work, Use Cases
Simple but effective “cheat sheet” on internet/networking protocols, simple examples of how they work, and use case scenarios for how a protocol would typically be used.
Memcached DDoS attack
Memcached can speed up websites, but a Memcached server can also be exploited to perform a DDoS attack. What is a memcached DDoS attack? A memcached distributed denial-of-service (DDoS) attack…
1Password discloses security incident linked to Okta breach
1Password, a popular password management platform used by over 100,000 businesses, suffered a security incident after hackers gained access to its Okta ID management tenant. “We detected suspicious activity on…
Okta says its support system was breached using stolen credentials
Okta says attackers accessed files containing cookies and session tokens uploaded by customers to its support management system after breaching it using stolen credentials. “The threat actor was able to…
What is IP spoofing?
Spoofed IP packets with forged source addresses are often used in attacks to avoid detection. What is IP spoofing? IP spoofing is the creation of Internet Protocol (IP) packets with…
What is a DNS flood? | DNS flood DDoS attack
A DNS flood is a DDoS attack that aims to flood and overwhelm a target DNS server. What is a DNS Flood? Domain Name System (DNS) servers are the “phonebooks”…
Microsoft is ready to kill off Patch Tuesday as we know it
Say hello to ‘Regular Tuesday’ For many organizations, Patch Tuesday will soon become “just another Tuesday”, because Microsoft is preparing to roll out a new tool that automates the patch…
October 2023 Patch Tuesday forecast: Operating system updates and zero-days aplenty
September has been a packed month of continuous updates. Apple and Microsoft released new operating systems, and several vulnerabilities exploited in web services resulted in a domino effect of zero-day…
AT&T Data Breaches: Full Timeline Through 2023
The most recent AT&T data breach occurred in March 2023, when AT&T notified 9 million customers that their data had been exposed following an attack on a third-party vendor. As…