Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

Akamai researchers have published a PoC exploit for a critical vulnerability (CVE-2022-34689) in Windows CryptoAPI, which validates public key certificates. “An attacker could manipulate an existing public x.509 certificate to spoof their identity and perform actions such as authentication or code signing as the targeted certificate,” Microsoft said in October 2022, when they announced fixes […]

Continue Reading

The most significant DDoS attacks in the past year

DDoS attacks are getting larger and more complex moving towards mobile networks and IoT, which are now used in cyberwarfare. In this Help Net Security video, Steve Winterfeld, Advisory CISO at Akamai, discusses the most powerful DDoS attacks in the past 12 months. The post The most significant DDoS attacks in the past year appeared […]

Continue Reading

Akamai Prolexic enhancements increase protection against rising DDoS threats

Akamai announced a significant evolution of its DDoS protection platform (Prolexic) with a global rollout of new, fully software-defined scrubbing centers, which will extend its dedicated defense capacity to 20 Tbps and accelerate future product innovations. In the wake of increasingly sophisticated and record-setting DDoS attacks worldwide, the move further enables Akamai Prolexic to defend […]

Continue Reading

Malicious DNS traffic targets corporate and personal devices

Akamai’s security research team examined potentially compromised devices, discovering that 12.3% communicated with domains associated with malware or ransomware during Q2 2022. This Help Net Security video uncovers how malicious DNS traffic affects people on the other end of the internet connection. The post Malicious DNS traffic targets corporate and personal devices appeared first on […]

Continue Reading

Photos: Infosecurity Europe 2022, part 2

It’s day two of Infosecurity Europe 2022 at the ExCeL in London. Here’s a look at the event, the featured vendors are: Akamai, SecurityScorecard, Edgescan, ManageEngine, Securonix, F5, ServiceNow, and Vade. The first photo gallery is available here. The post Photos: Infosecurity Europe 2022, part 2 appeared first on Help Net Security.

Continue Reading

Infosecurity Europe 2022 video walkthrough

Infosecurity Europe 2022 opened its doors today at the ExCeL in London, here’s a look inside the event. The featured vendors are: Akamai Technologies, AlgoSec, Appgate, AwareGO, Bridewell, CrowdStrike, Cybereason, Cymulate, Cympire, CyberVadis, Darktrace, Egress, Ermetic, ExtraHop, Google, Hack The Box, Hornetsecurity, Illumio, Ivanti, Kroll, Mend, Microsoft, Palo Alto Networks, Qualys, Rapid7, Reliaquest, Salt Security, […]

Continue Reading

Top three most critical areas of web security

Akamai Technologies revealed three research reports at the RSA Conference 2022, focusing on three of the most critical areas of web security: ransomware, web applications and APIs, and DNS traffic. Analyzing trillions of data points across its multiple platforms, the research team uncovered new findings on threat actor behavior via popular attack traffic and techniques. […]

Continue Reading

Akamai Malware Protection blocks malicious files uploaded to web apps and APIs

Akamai Technologies unveiled Malware Protection, which shields web applications and APIs from malicious uploads. The solution expands Akamai’s web application and API protection (WAAP), detecting and blocking malware at the edge, preventing it from reaching targeted systems where it can detonate and spread. Malware Protection addresses the growing problem of malware embedded in files uploaded […]

Continue Reading