Newsroom
In The News
MFA fatigue attacks: Users tricked into allowing device access due to overload of push notifications
Malicious hackers are targeting Office 365 users with a spare of ‘MFA fatigue attacks’, bombarding victims with 2FA push notifications to trick them into authenticating their login attempts.
This is according to researchers from GoSecure, who have warned that there is an increase in attacks that are exploiting human behavior to gain access to devices.
Multi-factor authentication (MFA) fatigue is the name given to a technique used by adversaries to flood a user’s authentication app with push notifications in the hope they will accept and therefore enable an attacker to gain entry to an account or device.
In a blog posted earlier this week, GoSecure described the attack as “simple”, given that “it only requires the attacker to manually, or even automatically, send repeated push notifications while trying to log into the victim’s account”.
AWS patches bug that left its WAF customers exposed to SQL injection
Researchers reported this week that they found a bug in MySQL that left AWS Web Application Firewall (WAF) customers exposed to an SQL injection.
In a blog post, GoSecure’s ethical hackers also confirmed that upon further testing, ModSecurity, a popular WAF for Apache and nginx, were also exposed to an SQL injection.
The researchers said the bug, which they trace back to a Black Hat presentation in 2013, was fixed by AWS on Oct. 1, with public disclosure coming on Wednesday.
How digital ‘drifters,’ eager to turn an easy profit online, fuel the malware marketplace
New research presented during Black Hat 2021 in Las Vegas on Wednesday reveals the important role of amateur, and amateurish, players in sustaining the cybercrime ecosystem.
The cybercrime underground is often portrayed as driven by a small number of highly motivated and capable actors with criminal intent — bot herders, ransomware masterminds and spy chiefs. But new research suggests it is sustained by a huge penumbra of individuals simply trying to earn a living off the internet — a portion of whom over time drift into criminal activity.
“What we conclude from our analysis is that there is a large informal workforce evolving at the periphery of the malware industry that is necessary to its operation,” Masarah Paquet-Clouston, a security researcher for GoSecure, told a virtual session at the Black Hat security conference in Las Vegas Wednesday.
She compared these “drifters,” moving from the informal economy to the cybercrime ecosystem, to the street level dealers and enforcers — often drug addicts themselves — who make the operations of transnational drug cartels possible. “They’re not the masterminds behind … the cartels. But if we take them off the streets, maybe we can tackle the [drug] problem differently,” she said.
Press Releases
GoSecure Adds Check Point to Technology Partnership Ecosystem
GoSecure announced a new partnership with Check Point that will enable GoSecure to add support for Check Point’s security products, expanding their open ecosystem of MDR/XDR technology partners.
GoSecure Appoints David DeRuff as Chief Financial Officer
GoSecure announced the appointment of David DeRuff as Chief Financial Officer. DeRuff brings with him an extensive background of investment banking experience focused on growth companies in industries where technology plays a transformative role.
GoSecure Appoints Jeff Schmidt as Chief Technology Officer
GoSecure announced the appointment of Jeff Schmidt as Chief Technology Officer, effective July 1. Schmidt previously held the role of VP of Cyber and Trustworthiness at GoSecure. In his new role, he will be responsible for overall technology strategy and helping drive the product roadmaps. Schmidt also will lead a team of solution architects as well as GoSecure Titan Labs, which comprises threat intelligence professionals and security researchers.
GoSecure and TPx Launch Managed Inbox Detection and Response Service
GoSecure and TPx today announced the launch of Managed Inbox Detection and Response (IDR) services. As a part of TPx’s Endpoints offering, the new Managed IDR service helps IT and security teams take advantage of GoSecure’s advanced technology and expert human analysis to prevent suspicious emails from turning into potential security breaches.
GoSecure Acquires Covail to Augment Managed Security Services
GoSecure today announced the acquisition of Covail, a leader in intelligent security and risk optimization and automation.
