Zhadnost 'stamps' out Ukrainian National Postal Service's website.
This blog is the latest in a series dedicated to Zhadnost, a Russia-aligned botnet first discovered by SecurityScorecard in March.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Potential Abuse of Self-Signed Certificate IP Attribution Leads to Malicious Score Drop
In 2020, SecurityScorecard uncovered a case in which self-signed certificates caused misattributions for CDN IPs, and IPs shared by many websites. At the time, we mitigated this issue by labeling CDNs (e.g. Cloudflare, Akamai, Fastly, etc.), so that customers could easily determine if their scoring problems were related to shared IPs.
How We Empower Your Post-Breach Actions
Here’s what you need to do immediately when a cybersecurity incident occurs: At SecurityScorecard, we’ve recently introduced our Digital Forensics Incident Response service. In case of an emergency, we can come on-site and help the company figure out what's happening and how to contain the crisis. It's valuable to us because now, in addition to providing scores and threat intelligence, we also have a service to help organizations become safer.
Shifting to Holistic Risk Management with Cyber Risk Quantification
As malicious attackers and nation states have increasingly weaponized the cyber domain to impact private companies, the sustainability of organizations' ties to their cybersecurity is in question across all industries and sectors. There are many examples of companies going out of business as a result of a cyber attack, due to business leaders failing to wrap their arms around all the different ways that the ever evolving cyber threat landscape can impact their business.
How Your Cybersecurity Score Impacts Your Stock Price
Your cybersecurity score impacts your stock price. Here’s how: The value of a company’s stock is based on trust. Investors need to trust that the company will perform well, sustain its competitive advantage, and protect its customers’ information. When a company gets hacked, it betrays that trust, influencing its credibility. We have seen the stock price of Equifax, SolarWinds, etc., drop after they suffered data breaches.
Incredibly simple...yet effective. Zhadnost botnet relies on Open Proxies and DNS Resolvers.
As mentioned in SecurityScorecard’s (SSC) previous Zhadnost blog posts (part one and part two), the DDoS attacks against Ukrainian and Finnish websites do not appear to have a lasting impact, as the sites were back online within hours of the attack.
The Caller is Coming from Inside the House!
SecurityScorecard’s own Ondrej Krehel talks with News 12 in New York about how to protect yourself from what might be the most surreal spam number of all—your own. Most of us are used to getting spam texts: You’ve paid your bill, click this link for a free gift! You’ve won the sweepstakes, click here to redeem! It’s no surprise that nothing good comes from clicking those links.
The Impact of New Federal Banking Regulation
Let’s talk about the new federal bank regulation that goes into effect in April 2022. It will require organizations to notify about a breach within 36 hours, which is the shortest breach notification reporting requirement of any law to date. The clock starts ticking when the organization determines that an incident has occurred. A serious computer incident is usually defined as an incident that materially disrupts or degrades the performance of an organization.
What We Can Learn From SolarWinds Security Breach
65% of cyber attacks today happen due to the negligence of a third party. SolarWinds security breach is a good example of that. In this case, hackers used a method known as a supply chain attack to insert malicious code into their Orion System. From there, they managed to crack into the SolarWinds network and put malware into the environment. SolarWinds did a great job following up on this. They made significant improvements and are currently rated as a B by SecurityScorecard.
What is Incident Response?
Creating an incident response plan is mission-critical for modern organizations. As threat actors continuously evolve their attack methodologies, organizations need the people, processes, and technologies that allow them to rapidly respond to a security incident. According to research, attacks have increased by 15% since 2019.