Security

Since mid-October, W4SP malware is attacking software supply chains; in this case, it's using Python packages to launch an information stealer.

With the disruption, loss of life and heartbreaking images that the Russia-Ukraine conflict has produced, it is easy to overlook what it has meant to the cyber threat landscape. Even threat actors have taken sides.

Throughout 2022, the theft of user credentials continued to blanket the threat landscape. A recent example that illustrates both the simplicity and depth of this tactic is the Uber breach by threat actor Teapot, which bought the illegally harvested user credentials on the Darknet Marketplace (DNM).

In the third quarter of 2022, the four universal cyberattack drivers were accounted for: war, religion, politics and money.

After a week of speculation about OpenSSL vulnerabilities, the OpenSSL project disclosed two new CVEs to address buffer overrun vulnerabilities in its cryptographic library that could trigger crashes or lead to remote code execution (RCE).

The 3 days between “Black Friday” and “Cyber Monday” are when online retailers often enjoy their highest sales numbers for the year....

To beat the prediction rush, Radware reached out to several of our customers to find out what they think 2023 will bring to light in the world of cybersecurity.

Now that we’re more than a week into October, it’s time to celebrate the birthday—well, birth month—of Cybersecurity Awareness Month. The goal...

The age of the multi-cloud is upon us, but that comes at a cost to security. In a nutshell, this is the key finding...

Web Application Firewalls (WAFs) have become a critical first line of application defense. Yet configuring and managing them in multi-cloud and on-prem...

Being caught up in all the events and media attention stemming from the Russo-Ukrainian conflict, one could forget...

In June 2021, I wrote a blog questioning if decade-old denial-of-service tools were still relevant. At the time, I had concluded that while the...