Akamai Diversity

Akamai Security Intelligence
& Threat Research

May 2020 Archives

Asaf Nadler

Asaf Nadler

May 27, 2020 8:00 AM

Watch Your Step: The Prevalence of IDN Homograph Att ...

The internationalized domain name (IDN) homograph attack is used to form domain names that visually resemble legitimate domain names, albeit, using a different set of characters [1]. For example, the IDN "xn--akmai-yqa.com" which appears in unicode as "akámai.com" visually resembles the legitimate domain name "akamai.com". Attackers often apply IDN homograph attacks to form domain names that are used for malicious purposes, such as malware distribution [2] or phishing [3], while

Martin McKeay

Martin McKeay

May 19, 2020 7:02 AM

Contributing to the Verizon Data Breach Investigatio ...

I remember sitting down to "crack the cover" of the very first Verizon Data Breach Investigation Report (DBIR) a lifetime ago. I was the security manager of a small hosting company and the report was the first time I'd ever seen a real, data driven effort to quantize breaches and the security problems we were facing daily. It was the first time we had real data, rather than theories, opinions

Larry Cashdollar

Larry Cashdollar

May 5, 2020 9:05 AM

SaltStack Vulnerabilities Actively Exploited in the ...

On April 29, 2020, the Salt management framework, authored by the IT automation company SaltStack, received a patch concerning two CVEs; CVE-2020-11651, an authentication bypass vulnerability, and CVE-2020-11652, a directory-traversal vulnerability.

Steve Ragan

Steve Ragan

May 5, 2020 8:00 AM

Credential Stuffing Attacks During the COVID-19 Pand ...

Since COVID-19 isolation protocols started in the United States in early March, bad actors have had a lot of time on their hands and a large pool of victims to target. Thousands of people, millions across the globe, suddenly found themselves working from home and away from many of the enterprise-grade protections that governed their day-to-day workflow.