- The nature of DDoS attacks is shifting, and while some organizations might believe that DDoS is a thing of the past, this is not the case.
- Attackers are moving away from simple volumetric floods, and focusing on more sophisticated, harder to mitigate application-layer (L7) DDos attacks.
- The past few months have seen two significant DDoS ransom campaigns: first against banks in South Africa in October 2019, and more recently a targeted campaign against Australian banks and financial institutions.
- Nikhil Taneja | July 7, 2020
- For many companies, a data breach has become almost a way of life and business as usual. Damages — from customer loyalty and reputation to financial penalties and damage to infrastructure — while sizable, seemingly have not significantly impaired the largest enterprises.
- While many of the steps and tactics used by insiders are similar or identical to those used by outsiders, insiders may have additional knowledge that outsiders do not.
- They may have less reliance on reconnaissance and even lateral movement — and command and control interactions would be from within the organization, as would exfiltration.
- Albert Zhichun Li | July 7, 2020
- Customer data of nearly 1.29 million users of online marketplace LimeRoad was allegedly breached and put up for sale on the dark web. The leaked data included personal information like the name, phone numbers, and email ID of these users.
- The Ministry of Electronics and Information Technology recently released an advisory via the Computer Emergency Response Team (CERT) warning the public of a large-scale phishing attack against businesses.
- The advisory states that hackers could try and steal personal and financial information under the pretext of local government authorities.
| July 1, 2020
San Diego Cyber Incident Response Guide
Learn more about San Diego’s region-wide cyber incident response guide and available local, state and federal resources.