Akamai Diversity

Akamai Security Intelligence & Threat Research

May 2017 Archives

Or Katz

Or Katz

May 25, 2017 10:11 AM

Consuming Cyber-security: The Beginning of a New Era

Overview Can you imagine anyone buying a car without airbags and without seat belts? I bet you can't! So why is it that we buy computers without Antivirus software already installed, home routers without a firewall already installed or connected devices (IoT) that are lacking proper security controls?

AkamAI Research

AkamAI Research

May 22, 2017 3:31 PM

Hoffmeister.be: You Just Got an Imaginary Friend!

We see a lot of DNS amplification attacks, so we're rarely impressed by them. Today was different.

Akamai SIRT Alerts

Akamai SIRT Alerts

May 15, 2017 1:35 PM

WannaCry: What We Know

On Friday, May 12, news agencies around the world reported that a new ransomware threat was spreading rapidly. Akamai's incident response teams and researchers worked quickly to understand this new threat and how to mitigate it. This blog post is a summary of what Akamai knows at this point. Remember that this is still an evolving threat and this information may change. Akamai will update this post as we collect

Yohai Einav

Yohai Einav

May 15, 2017 12:03 PM

WannaCry: views from the DNS frontline

As the investigation of the WannaCry ransomware keeps evolving, more evidence is revealed and more theories are suggested. While analyzing the DNS and HTTP traffic of domains and clients involved in WannaCry we made several useful discoveries, which may shed some additional light on this cybercrime.

Yohai Einav

Yohai Einav

May 11, 2017 2:46 PM

The (DDoS) Attack on French Media

A recent DDoS attack against Cedexis, a French service provider, caused many prominent French newspapers, including Le Monde, Le Figaro, L'Equipe, Le Nouvel Observateur, all hosted on Cedexis network, to briefly shut down yesterday, May 10. Other web services built on Cedexis network has been affected as well.

Yohai Einav

Yohai Einav

May 9, 2017 3:41 PM

The Comings and Goings (and Comings) of Locky

Ransomware is grabbing a lot of headlines lately given the increasing frequency with which these attacks occur. One prominent form of this advanced cyberthreat is Locky, which we first wrote about almost one year ago. After our initial blog post we saw Locky mostly disappear - at least momentarily. It then came back about three weeks later, but given our broad view of DNS queries from communications service provider (CSP)

AkamAI Research

AkamAI Research

May 3, 2017 1:24 PM

Sophisticated Hacker Behind the 'Google Docs' Phishi ...

Today a new phishing attack began making the rounds in email boxes around the world, taking the form of an email with a link to a Google Doc that the sender has shared with the recipient. The email looks innocent enough, as shown in the image below - I myself received one shortly after the attack was launched - and many people likely clicked the link out of curiosity to