Blog

When IoT devices are introduced across smart cities, advanced security planning must be factored into the discussions. This is especially important if cities are to ward off attacks from botnets.

The continued adoption of DNSSEC as a solution DNS cache poisoning is now causing a new set of problems previously underestimated. Advanced protection is a must to safeguard DNS servers.

It is orchestrated by an attacker exploiting the vulnerabilities in a DNS. But what exactly is a DNS you might ask?Contact Nexusguard now.

Certified Pentester course was designed by our practitioners. Read through the article and get to learn from the experience of our practitioners.

Data sovereignty should never prevent companies from using cloud-based security services, but instead, compel cloud vendors to be transparent.

With nearly half of its internet population relying on smartphones to access the internet, smartphone vulnerabilities lead to a greater attack surface and risk of DDoS attacks.

In developing nations where network infrastructure is less resilient, DDoS attacks on government websites can cause a more material impact to their economies.

Politically motivated DDoS attack is nothing new in cyberspace. A study of the patterns of some high-profile attacks in Hong Kong has shown that politically motivated DDoS attacks are strategically timed to disrupt protests and its development. Hitting the right target at the critical moment might even turn unfavorable situation around.

HTML5 Ping is a common HTML5 attribute, which was found to have been turned into a DDoS attack tool.

The large attack surface of communications services providers (CSPs) allows perpetrators to set up sneaky attacks that can easily go unnoticed by conventional intrusion detection systems, but can cause significant damage when attack traffic converges at the destination.

The large attack surface of communications services providers (CSPs) allows perpetrators to set up sneaky attacks that can easily go unnoticed by conventional intrusion detection systems, but can cause significant damage when attack traffic converges at the destination.

Nexusguard’s research findings​ reveal that communications service providers (CSPs) are increasingly abused by perpetrators as a tunnel to direct DDoS attacks to their downstream networks. This new breed of attacks are carried out in a stealthy way that they can easily bypass detection. Faced with evolving DDoS attack patterns and tactics that are more difficult to detect and mitigate, service providers are presented with a dilemma. Should they just pass on the attack traffic, knowingly or unknowingly, to the victim customer?

For communications service providers (CSPs), relying on legacy solutions to provide what is known as ‘cleanpipe’ service to customers is far from enough.

Last year, the FBI cracked down on the world’s 15 biggest DDoS-for-hire websites, known as “booters”, which are believed to have mounted more than 200,000 attacks since 2014.

In Q4 2018, 50% more ASNs suffered from a new type of stealthy network attacks carried out in a piecemeal fashion.

In the third quarter we identified a new, sneaky tactic whereby attackers contaminated a diverse pool of IP addresses across hundreds of IP prefixes with small-sized junk traffic.