SecurityTrails Blog
Social Engineering: What Is It? Types of Social Engineering Attacks and How to Protect Yourself from Them
With human error being the top cause of data breaches¹ in all kinds of organizations, it isn’t surprising that a type of cyber attack that exploits human psychology would be one of the most common threats to enterprise security we see.
Domain Security & Solutions, Part 4: How to Protect your Account at your Registrar
Not all entrepreneurs and developers are truly aware of the implications of losing a domain name. That’s why keeping it secure has to be one of your top priorities when running a company or business with an online presence.
DNS Root Servers: What Are They and Are There Really Only 13?
The Domain Name System is one of the most important internet services in existence, without which we wouldn’t be able to access any online content or even send an email. In fact, every time we try to connect to a website or any other online service, DNS root servers help our computers find and reach the desired addresses.
Domain Security & Solutions, Part 3: Stale DNS Records & Subdomain Takeover Attacks
Since the beginning, the Internet has been powered by servers. Going back a few decades, most companies used bare metal servers. Then came VPS servers, which allowed people to run virtual operating systems in a single dedicated server with different applications, database technologies, and more.
Cloudflare shutting down 8chan: the Internet shelter for hatred
This morning we were surprised by the recent news announcing that Cloudflare is going to shut down the popular website 8chan (8chan.net) from their infrastructure.
Cyber Security Culture: Why It Matters for Your Business
As much as technology has grown with cloud computing, IoT devices and new software applications, organizations have in turn created a larger attack surface that opens the door for more potential cyber attacks.
DNS Hijacking: How to Identify and Protect Against It
A cyber threat thought by many to be a thing of the past has seen its resurrection over the past couple of months. Earlier in the year, we saw reports about widespread DNS hijacking campaigns targeting the Middle East and North Africa with a few in Europe and the US. That was followed by information about DNS hijacking attacks targeting home routers and phishing websites that imitate Netflix, PayPal, Uber, Gmail and more.
Find Vulnerabilities Before They Become Yours: Cybersecurity with Mergers and Acquisitions
All digital assets, including network systems, data and the way it’s stored and protected, are the foundation of any successful business. That’s why they can pose a significant business risk. The dependence of modern businesses on their digital records raises their potential vulnerability to security breaches.
Top GitHub Dorks and Tools Used to Scan GitHub Repositories for Sensitive Data
For years, using Github as your main repository for application development version control has been the industry standard. Even in the presence of many competitors, Github still stands as the number one option. Millions of developers push code changes to GitHub several times in a single day, and those changes can be overwhelming when you’re working simultaneously with distributed dev teams ‘round the clock. Troubles arise when developers accidentally include password credentials, usernames or cloud-based keys in their public and private repos.
Is SSL really a sign of security?
Over the past few years, we’ve seen SSL/TLS growth like never before. And that’s due, in part, to a series of events boosted by companies like Google with their famous announcement of HTTPS as a ranking signal, Mozilla, Cisco, Akamai, other big players with the Let’s Encrypt project, cPanel’s free AutoSSL features released to the web hosting industry, and many others making strides toward a better, safer internet.