SecurityTrails Blog

Preventing Subdomain Takeover Attacks with Attack Surface Intelligence
Next year will mark the 40th anniversary of the creation of the Domain Name System (DNS) by Paul Mockapetris, a pioneer of the IT industry whose forays into early distributed systems and email delivery applications led to the groundbreaking naming exchange that permeates today's internet.

The Role of Cloud Misconfigurations & the Attack Surface in the 2022 Verizon DBIR
This year's 15th installment of the Verizon Data Breach Investigations Report (DBIR) features yet another impressive dataset of corporate breaches and exposures marked by an overriding postulate: attack surfaces matter* and they should dictate a large portion of your risk assessment strategy.

Insights and lessons learned from the recent BIG-IP Application Delivery Services Vulnerability
Every few months, a bug will come along that puts the information security community into a flurry of activity. Working weekends and nights to understand new vulnerability information as it comes to light, applying new patches (sometimes multiple times, as the situation changes), while also keeping apprised of new information hasn’t been uncommon. Throughout these past couple of years, we’ve had bugs as notable as Log4J, ProxyLogon, and more recently, a string of F5 vulnerabilities.

Detecting the Most Dangerous Ports with Attack Surface Intelligence
Software ports are an essential component of any modern application. It's because ports allow applications to communicate that your web browser has connected to a port on our web server, fetched the contents of this blog article, and shared it on your screen for you to read.

Cybersecurity: The Key to Your Divestment Process
Divestitures occur when an organization sells a division or portion of their business and assets to another company. This process can be set in motion for various reasons, including the want of financial gain in difficult times (wherein an organization might sell off their least profitable assets), the desire to free up resources (to increase focus on a primary area of business), and to lower the risk of non-compliance with regulations.