Don’t use CAPTCHA? Here are 9 CAPTCHA alternatives
Traditional CAPTCHA isn't the only way to utilize when avoiding spam or malicious bots. Learn about other ways to stay safe.
Topics
Python for active defense: Monitoring
Data is essential to effective active defense, and using Python is a good way to monitor your data sources to identify anomalies.
Python for active defense: Network
Python can be used for traffic collection, protocol decoding, and burning in a decoy when it comes to network defense.
How to carry out a watering hole attack: Examples and video walkthrough
What is a watering hole attack, how do they work and what can you do to defend against them? Find out in this from Infosec's Keatron Evans.
How cross-site scripting attacks work: Examples and video walkthrough
What are cross-site scripting attacks and how do they work? Find out in this walkthrough from Infosec Skills author John Wagnon.
The other sextortion: Data breach extortion and how to spot it
Both data breach extortion and sextortion are serious crimes. Here’s what to do when faced with either.
Texas HB 3834: Security awareness training requirements for state employees
Find all of the security awareness training requirements now required of state employees to adhere to Texas HB 3834.
Red teaming: Is it the career for you?
Red teamers go beyond the basics of penetration testing to help test an organization's security against both in-person and online attackers.
Incident responder careers: What’s it like to work in incident response?
Take a look at what it is like to work in the field of cybersecurity incident response.
Why employees keep falling for phishing (and the science to help them)
Phishing is an ever-present cybersecurity issue. And people keep falling for it. Here is why and how people keep falling for phishing emails.
Phishing attacks doubled last year, according to Anti-Phishing Working Group
This article will recap findings from the 2020 fourth quarter edition of the APWG Phishing Activity Trends Report.
Taidoor malware: what it is, how it works and how to prevent it | malware spotlight
Taidoor is one of the malware criminals have developed to keep their nefarious activity undetectable.
SUNBURST backdoor malware: What it is, how it works, and how to prevent it | Malware spotlight
SUNBURST is a backdoor associated with a SolarWinds digitally-signed component of the Orion software framework.
HACKSUDO: PROXIMACENTAURI VulnHub CTF Walkthrough, Part 1
Follow along as we solve this Capture the Flag (CTF) from Vulnhub.
VULNCMS: 1 VulnHub CTF walkthrough part 2
In the last part of this Capture the Flag (CTF), we found four HTTP ports open on the target machine. We tried enumerating the HTTP ports available on the target...
iOS forensics
Day by day, smartphones and tablets are becoming ever more popular, and as a result, the technology used in development to add new features or improve the security...
Kali Linux: Top 5 tools for digital forensics
There are many tools available from Kali Linux. These are the five most popular tools for digital forensics work.
How to comply with FCPA regulation – 5 Tips
Check out the top five methods you can use in order to come into compliance with the Foreign Corrupt Practices Act of 1977 (FCPA).
ISO 27001 framework: What it is and how to comply
ISO 27001 is a standards framework that provides best practices for risk-based, systematic and cost-effective information security management.
Kali Linux: Top 8 tools for reverse engineering
These Kali Linux tools are great for offensive and defensive cybersecurity.
Stacks and Heap
Memory is a crucial resource for any system when conducting reverse engineering. Malware analysts must understand the way memory is assigned to a program.
During...
Only 20% of new developers receive secure coding training, says report
A lack of secure coding training presents a risk for your organization.
Container security implications when using Iron vs VM vs cloud provider infrastructures
Containers are popular, meaning more and more service providers are offering ways to manage container workloads, each with their own pros and cons.
How to use Wireshark for protocol analysis: Video walkthrough
Learn how to analyze network traffic with the free protocol analyzer Wireshark and sniffing tool tcpdump. Then try it yourself!
9 best practices for network security
Network security is important for every organization, no matter how big or small. Here are some best practices.
Cybersecurity Weekly: REvil decryptor, AT&T loses millions, OMIGOD flaw
A free decryptor for past REvil ransomware victims was released. AT&T lost $200 million to an illegal phone unlocking scheme. Mirai Botnet started exploiting the OMIGOD flaw. All this, and more, in this week’s edition of Cybersecurity Weekly.
Cybersecurity Weekly: Cobalt Strike beacon, REvil is back, IT training pitfalls
Linux Cobalt Strike beacon is being used in ongoing attacks. REvil ransomware is back in full attack mode and leaking data. 7 signs your IT training sucks. All this, and more, in this week’s edition of Cybersecurity Weekly.
Dark Web hacking tools: Phishing kits, exploits, DDoS for hire and more
The demand for dark web hacking tools has reached all-time highs across the cybercriminal ecosystem during the COVID-19 pandemic.
Double extortion ransomware: Pay now or get breached
Ransomware has become a lot more sophisticated recently, and learning more about it is important to stay safe in case it happens to you.
Beginner’s guide to the basics of data encryption
Encryption is one of the best ways to protect data from being exposed due to different types of cyber incidents. Learn how it works.
Structures of cryptography
Cryptography is an important way to keep data safe. Learn about cryptography features and how cryptography works.
Securing cloud endpoints: What you should know
Let’s take a closer look at security challenges affecting endpoints in public and private clouds.
AWS security and compliance overview
Amazon offers many solutions for ensuring your environment is secure and meets many industry standard compliance frameworks. By properly utilizing tools such...
Sparrow.ps1: Free Azure/Microsoft 365 incident response tool
Sparrow is a powerful tool used for detecting malicious activities in Azure and Microsoft Office 365.
Uncovering and remediating malicious activity: From discovery to incident handling
Need a “cybersecurity playbook” for incident response? A recent CISA alert used threat intel from five counties to create this best practice guide.
Android security: Everything you need to know [Updated 2021]
Android devices have a host of security risks, but updates are helping to mitigate them.
Application sideloading in Windows 10
Windows 10 security is a constantly evolving and update process. Data security in Windows 10 starts with a high encryption, using BitLocker. Access is restricted...
The real dangers of vulnerable IoT devices
Internet of Things devices pose a very real threat to cybersecurity. And today, they are prevalent in every household.
How criminals leverage a Firefox fake extension to target Gmail accounts
We walk through a specific Firefox extension called FriarFox that targets Gmail accounts of global Tibetan organizations.
Operational technology compromises: Low sophistication, high-frequency
Operational technology has been a target for bad actors recently, with attacks increasing, though they remain low-level.
ICS/SCADA threats and threat actors
Industrial control systems (ICS) and Supervisory Control And Data Acquisition (SCADA) systems play a critical role in critical infrastructure and industrial...
Genetic testing “hottest” new form of health insurance fraud, FBI warns
The FBI is finding more and more cases of health insurance fraud. Learn more about it.
Healthcare data security issues: Best security practices for virtual healthcare sessions
With more telehealth and related digital mechanisms to deliver health, healthcare data security standards are more important than ever.
Most common MITRE ATT&CK tactics and techniques: CISA shares most common RVAs
CISA has released a list of Risk and Vulnerability Assessments, or RVAs, to the MITRE ATT&CK Framework and have released their findings to the public...
Using MITRE ATT&CK with cyber threat intelligence
The MITRE ATT&CK framework is a tool developed by the MITRE Corporation. It is designed to provide information about how a cyberattack works and the various...
Deception technologies: 4 tools to help you identify threats and mitigate risks
Deception technologies have come a long way from the days when honeypots were used to analyze attacker behavior. Today’s deception tools contain advanced...
Threat hunting with Kolide and osquery
In this article, we’ll discuss how we can use Kolide Fleet for threat-hunting purposes. This article is not intended to be an introductory piece, but rather...
Engineering speech recognition from machine learning
The goal of speech recognition is to translate spoken words into text, and machine learning is helping it evolve.
Engineering voice impersonation from machine learning
Voice cloning can become a problem as scammers use it in new ploys to get money from people and corporations.
Decentralized identifiers (DIDs) and blockchain: The silver bullet for online privacy?
Learn more about decentralized identifiers and the role they play in keeping your privacy and data intact.
Cryptocurrency Enforcement Framework: Impacts on digital forensic investigations
A new Cryptocurrency Enforcement Framework was recently released. Learn how it may impact cryptocurrency, cybersecurity and digital forensics investigations.
Smart Toys and Their Cybersecurity Risks: Are Our Toys Becoming a Sci-Fi Nightmare? [updated 2021]
As smart toys get more advanced, they bring more cybersecurity risk with them.
Japan’s IoT scanning project looks for vulnerable IoT devices
The Internet of Things (IoT) is still a baby compared to other computing technologies, but the market has already exploded and continues to expand at a healthy...
Cyber risks of digitizing legacy systems in healthcare environments
The benefits of healthcare digitization might benefit a single asset, a process or the hospital as a whole — but it comes with obligations.
Death rays, Death Stars and deathware?
The impact of fatal attacks against cyber-physical systems will reach over $50 billion by 2023. Learn more about this new killware or deathware.
Human reconnaissance: The solution to insider threats
Human reconnaissance offers awareness regarding how your employees are most likely to fall victim to hacks, data breaches or other vulnerabilities.
Insider threat report: Tesla employee thwarts $1 million bribery attempt
Tesla’s near insider threat situation response is a good model to follow if faced with a similar situation.
Infosec Skills Monthly Challenge is here: Are you ready?
Join the quest for new skills, bragging rights and over $1,000 in prizes. Each month, we’ll release a brand new challenge. Can you complete it?
ICS cyber ranges: Hands-on training for industrial control system security teams
Incident response has been a pillar of cybersecurity for decades. But plans to account for the unique risks surrounding the specialized command and control...
PenTest+: DoDD 8570 overview
In November 2020, the US Department of Defense (DoD) has selected CompTIA PenTest+ as an approved certification for military personnel and defense contractors...
Introduction to the DoD Cyber Workforce Framework (DCWF)
In response to the ever-changing world, including the increased focus on cyberspace as a theater of war, the US Department of Defense (DoD) decided that it...
How to mitigate IoT attacks using manufacturer usage description (MUD)
IoT devices can effectively be black boxes on our network, capable of launching attacks against ourselves or others. The new NIST MUD standard can help lock them down.
NIST Privacy Framework: A tool for improving privacy and enterprise risk
To keep data safe, organizations can look to the NIST Privacy Framework and the NIST Cybersecurity Framework for peace of mind.