Tag: Cyber Security
-
Your Devices May Be Spying on You — And You Would Never Know
For anyone who frequently shops online, you may have noticed an increase in the number of electronic products sold by obscure, unheard of companies. Many of these products come with unbelievably, surprisingly affordable prices. A 4K projector with dual-band WiFi 6, 5G wireless, Bluetooth 5.2, and Android 13 for $54. What a deal. It almost Read more
-
Salesforce Breaches 2025
The second half of the year came with several waves of Salesforce-related breach incidents. Starting in August, researchers first linked the threat actors UNC6395/ShinyHunters. They were conducting a widespread campaign that targeted Salesforce environments by using compromised OAuth tokens linked to Salesloft’s Drift AI customer-engagement integration. The second wave can be considered more of a Read more
-
Artificial Intelligence Threat Landscape
Artificial Intelligence (AI) is one of the fastest-growing aspects of the tech industry. Whether for professional or personal use, AI is a part of almost everyone’s life, from Google searches to work applications. As AI capabilities expand and more use cases emerge, the risk of exploitation also increases. While AI is a tool that IT Read more
-
What is Email Bombing?
Email bombing is a disruptive tactic in which a threat actor deliberately floods a victim’s inbox with thousands of unsolicited or automated messages in a short period of time. Discovering your inbox under an email bombing attack requires fast, deliberate action. Threat actors use email bombing as a tool for disruption and facilitation of further Read more
-
CTFs as a Training Tool for Blue-Space Operators
What is Capture the Flag (CTF)? If you do not already know or if you are new to cybersecurity, a CTF is essentially a simulated challenge where participants must solve puzzles or investigate clues to locate the “flag.” Most events use a jeopardy-style board with categories such as: Other formats use an attack-and-defend model where Read more
-
Deepfakes (Voice and Video): DefendEdge Executive Brief Risks, Tools, Detection, and Client-Facing Guidance
Executive Summary Voice and video deepfakes are actively used to impersonate senior leaders and push payments, credentials, and malware in real time. Recent events include an attempted impersonation of WPP executives that staff blocked, and North Korea–aligned BlueNoroff using deepfaked Zoom calls to deliver macOS malware. The FBI’s Internet Crime Complaint Center (IC3) warned on Read more
-
Why SIEM is the Heartbeat of Security Operations
Did you know that every 11 seconds, a business becomes a victim of a cyberattack? Here’s a lesser-known fact. Signs of the attack could have been present for a long time, written in the firewall, server, or endpoint logs. The challenge is not the data. The question is, how quickly can an organization leverage that Read more
-
The Truth Behind the “Brushing” Cyber Scam
Of the various forms of e-commerce fraud, one of the lesser-known yet prevalent kinds is the brushing scam. This scam appears harmless; receivers will simply get a package they never ordered. However, behind every “free gift” is a manipulative operation abusing personal data and online trust. Description:The goal behind brushing scams are to generate fake Read more
-
The Road Map to Illinois Being a Centralizing Force in Cyber Security
Illinois is known as the transportation hub of the United States, utilizing Chicago and its geographical center in America. In 2019, The State of Illinois did a major push through the budget to fund large investments into data centers around northern Illinois. The state’s investment in its infrastructure, bolstered by House Bill 3293 (HB 3293), Read more
-
Session Hijacking
There are many different types of session hijacking, including session fixation, man-in-the-middle attacks, and active session hijacking. In active session hijacking, an attacker takes over a live session by stealing the session ID while the victim is already logged in. This can be done through methods such as network sniffing or cross-site scripting. The goal Read more