Category: Exploits & Attacks

According to a recent survey from Barkly, cyberattacks targeting SMBs are plummeting, with two-thirds of the respondents reported increased sophistication of those attacks. In fact, SMBs have seen an exponential increase in the type of attacks that are different from the usual threat vectors. The top five biggest attacks faced by SMBs in the last one year are:

1. Attacks abusing Microsoft Office programs
2. Attacks installing cryptominers
3. Ransomware attacks
4. Attacks abusing other legitimate Windows apps
5. Attacks utilizing worming/lateral movement components.

Despite the increasing number of attacks, only 36% of SMBs expect to see an increase in their security budget for 2019. [via TechRepublic] Read More

Black Hat Review Board Members give their picks for must see presentations this week at Black Hat USA 2018. They have broken down the 2018 cybersecurity exploit trends into 6 categories:

1. Software Development
   1. Breaking Parser Logic, Lagoon JKL, WED 4PM
   2. AI & ML in Cybersecurity: Why Algorithms Are Dangerous, South Seas ABE, THU 11AM
   Policy
   1. Legal Liability for IoT Hacking, Lagoon JKL, THU 2:30PM
   Network Defenses
   1. ZEROing Trust: Do Zero Trust Models Provide Real Security, South Seas CDF, WED 4PM
   Hardware Platform Security
   1. Meltdown: Basics, Details, Consequences, South Pacific F, WED 2:40PM
   2. GOD Mode Unlocked: Hardware Backdoors in x86 CPUs, South Pacific F, THU 11AM
   Web Application Security
   1. Practical Web Cache Poisoning: Redefining ‘Unexploitable’, South Seas CDF, THU 3PM
   Human Factor
   1. Infosec Philosophies for a Corrupt Economy, Islander EI, WED 5:05PM
   2. Demystifying PTSD in the Cybersecurity Environment, South Seas ABE, THU 9AM

   For more details, visit the Black Hat Briefings 2018 agenda here: https://www.blackhat.com/us-18/briefings.html