Tag Archives: countries

Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205

Attackers are actively exploiting an “old” vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The additional bad news is that at least half of the 60,000 internet-facing GitLab installations the company detects are not patched against this issue. What are the attackers doing with these servers? Damian Menscher, a security reliability engineer responsible for DDoS defense at Google, says that some of them are used to generate DDoS attacks: A … More ? The post Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205 appeared first on Help Net Security .

View the original here:
Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205

DDoS attacks increased 11% in 1H 2021, fueling a global security crisis

NETSCOUT announced findings from its report that underscore the dramatic impact cyberattacks continue to have on private and public organizations and governments worldwide. In the first half of 2021, cybercriminals launched approximately 5.4 million Distributed Denial of Services (DDoS) attacks, increasing 11% over 1H 2020 figures. Additionally, data projections point to 2021 as another record-setting year on track to surpass 11 million global DDoS attacks. This long tail of attacker innovation is expected to last, … More ? The post DDoS attacks increased 11% in 1H 2021, fueling a global security crisis appeared first on Help Net Security .

View original post here:
DDoS attacks increased 11% in 1H 2021, fueling a global security crisis

ThreatX API Catalog enables enterprises to reduce risk and protect critical APIs

ThreatX announced new API Catalog capabilities to provide enterprises with a clear view of their API’s attack surface, as well as the operational health of APIs in production. ThreatX supports DevOps and Security teams by assessing traffic in real-time to reduce risk and protect critical APIs from misconfiguration, DDoS, BOT attacks and malicious use. APIs are under constant assault by sophisticated attackers. Any downtime or data loss experienced as a result of an API attack … More ? The post ThreatX API Catalog enables enterprises to reduce risk and protect critical APIs appeared first on Help Net Security .

Read this article:
ThreatX API Catalog enables enterprises to reduce risk and protect critical APIs

Corero Network Security expands DDoS protection portfolio with ETD capability

Corero Network Security announces additional flexibility when deploying its SmartWall solution, with a new Edge Threat Defense (ETD) capability. Corero’s mission is to make the internet a safer and more reliable place to do business by protecting against the downtime and disruption caused by DDoS attacks. Corero enables organizations around the globe to maintain business continuity in the event of a DDoS attack, by deploying the award-winning and intelligently automated SmartWall DDoS protection solution that … More ? The post Corero Network Security expands DDoS protection portfolio with ETD capability appeared first on Help Net Security .

View original post here:
Corero Network Security expands DDoS protection portfolio with ETD capability

Week in review: HiveNightmare on Windows 10, Kaseya obtains REvil decryptor

Here’s an overview of some of last week’s most interesting news and articles: Kaseya obtains universal REvil decryptor There’s finally some good news for the MSPs and their customers that have been hit by the REvil ransomware gang via compromised Kaseya VSA software: a universal decryptor has made it available to affected organizations. DDoS attacks are up, with ever-greater network impact With an overall rise in available network capacity, cyber criminals are increasingly targeting their … More ? The post Week in review: HiveNightmare on Windows 10, Kaseya obtains REvil decryptor appeared first on Help Net Security .

Continue reading here:
Week in review: HiveNightmare on Windows 10, Kaseya obtains REvil decryptor

Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks

Kinetic Business introduced DDoS Mitigation Service, a fully managed service that monitors, detects, validates and mitigates attacks—even on third-party networks —before an outage or related damage occurs. The service augments Kinetic’s portfolio of security services and complements the company’s leading business data and voice services. DDoS attacks are disruptive and can easily make an organization’s internet circuit unavailable, impact their business and potentially put them in non-compliance with industry regulation. Kinetic’s DDoS Mitigation Service uses … More ? The post Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks appeared first on Help Net Security .

View article:
Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks

Defending against Windows RDP attacks

In 2020, attacks against Windows Remote Desktop Protocol (RDP) grew by 768%, according to ESET. But this shouldn’t come as a surprise, given the massive increase in people working remotely during the pandemic. With enterprises resorting to making RDP services publicly available, hackers have taken notice. Some DDoS attacks are leveraging RDP servers to amplify their effect, and malware like Trickbot is employing scanners to identify vulnerable open RDP ports. When it comes to remote … More ? The post Defending against Windows RDP attacks appeared first on Help Net Security .

See more here:
Defending against Windows RDP attacks

DDoS attackers stick to their target even if they are unsuccessful

Link11 has released its DDoS report for Q1 2021 which revealed the number of DDoS attacks continued to grow. Between January and March, more than double the number of attacks than the same period in the previous year were recorded. This suggest the already alarming threat level from cybercrime, a pandemic that has been raging since Spring 2020 alongside the fight against COVID-19, has once again intensified. DDoS attackers stick to their target The number … More ? The post DDoS attackers stick to their target even if they are unsuccessful appeared first on Help Net Security .

View article:
DDoS attackers stick to their target even if they are unsuccessful

DDoS attack activity: 10 million-plus attacks and 22% increase in attack frequency

Netscout announced findings from its bi-annual Threat Intelligence Report, punctuated by a record-setting 10,089,687 DDoS attacks observed during 2020. Cybercriminals exploited vulnerabilities exposed by massive internet usage shifts since many users were no longer protected by enterprise-grade security. Attackers paid particular attention to vital pandemic industries such as e-commerce, streaming services, online learning, and healthcare generating a 20% year-over-year increase in attack frequency over 2019 plus a 22% increase in the last six months of … More ? The post DDoS attack activity: 10 million-plus attacks and 22% increase in attack frequency appeared first on Help Net Security .

Read More:
DDoS attack activity: 10 million-plus attacks and 22% increase in attack frequency

Extortion demands grow as cybercriminals target new online industries

There was a 154 percent increase in the number of attacks between 2019 and 2020, with growth in ransom-related DDoS (RDDoS) attacks and a rise in use of existing attack vectors, including web applications, a Neustar report reveals. The report also provides key details around the amount, size, duration and intensity of DDoS attacks throughout 2020 to keep cybersecurity professionals informed. DDoS extortion demands on the rise Primarily, the report highlights a rise in ransom-related … More ? The post Extortion demands grow as cybercriminals target new online industries appeared first on Help Net Security .

More:
Extortion demands grow as cybercriminals target new online industries