Cybersecurity Report
LockBit 3.0 Ransomware Case Study: A Huge Cybersecurity Risk
In this article, we will analyze Lockbit 3.0 ransomware cases and determine how attacks similar to these cases can be prevented. What is LockBit 3.0 Ransomware? LockBit 3.0 (also known [...]
Cloud Attack Surfaces: Detecting Active AWS Assets Left Unattended
Plenty of vulnerable default welcome pages can be found on a cloud attack surface. Software engineers who understand AWS cloud characteristics or users who have encountered AWS' default welcome pages can [...]
Default welcome page exposure: A Significant Security Risk
Default welcome page exposure describes blank preference web pages left neglected on the attack surface. They are most commonly encountered at the beginning stages of installing and running systems, and [...]
K-Pop Deepfake Porn Sites: Sneaky Criminals Hiding Real IP Address with Cloudflare
Deepfake is an image synthesis technology that utilizes AI. It is a collective term for frame-by-frame synthesis of a person in an existing image or a video with another person's [...]
DDoS Attack Case Study: 20 Hours of Unprovoked Aggression
Recently, there was a GET Flooding Attack-type DDoS attack case on a web services company for about 20 hours. Various attack traffics were detected on the login page which caused serious [...]
API Key, a Key to Credential Leakage & Manipulation
Upon searching for Django web applications with enabled Debug Mode on Criminal IP (https://www.criminalip.io/), Database (hereinafter referred to as DB) accounts information and API Keys of more than 3,100 applications [...]
