Article Categories
- All Categories
-
Data Structure
-
Networking
-
RDBMS
-
Operating System
-
Java
-
MS Excel
-
iOS
-
HTML
-
CSS
-
Android
-
Python
-
C Programming
-
C++
-
C#
-
MongoDB
-
MySQL
-
Javascript
-
PHP
Anti Virus Articles
Page 18 of 42
What is a Supply Chain Attack in Cybersecurity? (Examples, How to Detect & Prevent)
What is a Supply Chain Attack?A supply chain attack, also known as a value-chain or third-party attack, occurs when an outside partner or provider with access to your systems and data infiltrates your system. The attack surface of the typical organization has grown substantially in recent years, with more suppliers and service providers touching critical data than ever before.A supply chain attack is a cyber-attack that aims to harm an organization by targeting the supply chain's less-secure sections.A supply chain attack can affect businesses in any sector, including banking, oil and gas, and government sectors.A supply chain attack can occur ...
Read MoreWhat is MITRE ATT&CK Security Framework?
MITRE ATT&CK stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge, and it is a trademark of MITRE (ATT&CK).The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior, representing the many stages of an adversary's attack lifecycle as well as the platforms they are known to target.The model's tactics and methods abstraction creates a standard taxonomy of specific adversary operations that both the offensive and defensive sides of cybersecurity can understand. It also assigns a proper level of classification to adversary behavior and precise techniques to counteract it.MITRE ATT&CK was born out of MITRE's Fort ...
Read MoreWhat is a Zip Bomb (aka Decompression Bomb)?
A "zip bomb" is a malicious archive file that is designed to crash or render the application or system worthless that reads the file. It is frequently used to disable antivirus software in order to allow more traditional malware to infiltrate. It is also known as a "decompression bomb."A zip bomb lets a program run normally, but instead of hijacking its operation, it creates an archive that takes a long time, a lot of disk space, or a lot of RAMS to unpack.A decompression bomb could be a zip file, a compressed installation file, or an executable application.A zip file ...
Read MoreWhat is Code Injection? (How it Works, How to Prevent)
Remote Code Execution (RCE), often known as Code Injection, is a sort of attack in which an attacker can inject and execute malicious code into an application. This foreign code has the ability to compromise data security and integrity. It can often get through authentication controls, and these attacks are generally linked to apps that rely on user input to run.Code Injection attacks take advantage of a sloppy data management. These attacks are typically made feasible by a lack of sufficient input/output data validation, such as −Data formatQuantity of anticipated dataAllowable charactersSQL injection, Script injection, Shell injection, and Dynamic evaluation ...
Read MoreWhat is Computer Forensics (aka Cyber Forensics)?
Computer forensics is a subset of digital forensic science that deals with evidence found on computers and other digital storage devices. Computer forensics aims to study digital media in a forensically sound manner in order to identify, preserve, retrieve, analyze, and provide facts and views about digital information.Although computer forensics is most commonly connected with the investigation of a wide range of computer crimes, it can also be employed in civil cases. Data recovery techniques and principles are used, but different norms and practices are in place to produce a legal audit trail.Criminal investigations and law enforcement require cyber forensics. ...
Read MoreWhat is Cyber Resilience?
Cyber Resilience is an entity's capacity to produce the expected results, despite adverse cyber events. Adverse cyber events are those that have a detrimental influence on the availability, integrity, or secrecy of networked IT systems, as well as the data and services they include.Resilience is the ability to anticipate and adapt to changing conditions and endure and recover quickly from disturbances. In an information technology context, cyber resilience focuses on preventative, investigative, and reactionary controls to analyze weaknesses and make improvements to the entity's overall security posture.Cyber resilience is a developing concept that is quickly gaining traction. Information security, business ...
Read MoreWhat is CoreBOT Malware?
The malware's name comes from the file's creator, who named it "core." The Trojan is deployed through a drop file that leaves the target system as soon as the CoreBot is run. To stay alive, the thief installs a code to the Windows Registry.The virus can harvest passwords, and the modular plugin makes it easy for the developer to add other features. CoreBot can't intercept data in real-time at the moment, but it poses a danger to email clients, wallets, FTP clients, private certificates, and a few desktop programs.The sophisticated banking malware CoreBot is making a reappearance to target online ...
Read MoreWhat is Ryuk Ransomware? (How it Spreads, How to Detect)
Ryuk, pronounced "ree-yook", is a ransomware family that initially surfaced in the middle to late part of 2018. In Los Angeles, the New York Times and the Wall Street Journal shared a printing plant. The attack had an impact on them as well, causing distribution problems for the Saturday editions of the publications.Ryuk starts by shutting down 180 services and 40 processes when it infects a system. These services and processes may obstruct Ryuk's operations, or they may be required to carry out the assault.The encryption can then take place. Ryuk uses AES-256 encryption to encrypt data, including images, movies, ...
Read MoreWhat is Endpoint Security?
Endpoint Security is a technique for preventing hostile actors and campaigns from obtaining access to endpoints or entry points on enduser devices, including PCs, laptops, and smartphones. Endpoint security solutions protect cybersecurity risks on a network or in the cloud. Endpoint security has progressed beyond antivirus software to complete protection against sophisticated malware and emerging zero-day threats.Endpoint Security is commonly referred to as the "frontline" of cybersecurity, as it is one of the first places where businesses attempt to secure their networks.How Does "Endpoint Security" Work?An Endpoint Security software searches for suspicious or harmful indicators in files, processes, and system ...
Read MoreWhat is Baseline Security? What is its Standard Framework?
There are a few distinct interpretations of what constitutes baseline security. The National Institute of Standards and Technology (NIST) defines a Security Control Baseline" as a set of fundamental security measures recommended for a low-impact, moderate-impact, or highimpact information system. It is a collection of information security controls developed through information security strategic planning efforts to handle one or more specific security categorizations.Microsoft, on the other hand, defines Security Baselines as criteria that particular businesses create and to which apps and devices must adhere. Microsoft's own security baselines are collections of suggested configuration settings for varying levels of effect, based ...
Read More