Magecart Strikes Again
Ticketmaster, British Airways, and Newegg have all been compromised. Who’s next? Read our research to see how we discovered the breaches.
IDG Connect: 2017 State of Enterprise Digital Defense Report
Findings quantify the security management gap and business impact of external web, social, and mobile threats.
Get the Research Report
Frost & Sullivan: The Digital Threat Management Platform Advantage
The material benefits of a platform-based approach to security outside the firewall.
Read the Report
2018 Holiday Shopping Season Threat Activity: A Snapshot
The 2018 holiday shopping season was the largest ever for online retailers, but threat actors filled their pockets, too.
So what did the threat activity around this shopping frenzy look like?
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
EMA Radar™ Q4 2017 Report
RiskIQ ranked a technology and value leader in digital threat intelligence management.
Get the Analyst Report
The 2018 holiday shopping season was a boon for retailers, but cyber threat actors filled their pockets, too.
As businesses innovate by expanding their online presence and migrating to the cloud, their digital footprints grow tenfold. This footprint, a collection of far-flung, client-facing assets outside the firewall that hackers can and will discover as they research their next cyber threat campaigns, becomes part of their attack surface.
Assets outside the firewall were the inroad for some of the worst hacks of 2018, and businesses continued to see attackers target these attack surfaces during the 2018 holiday shopping season.
The flurry of shopping activity over the 2018 holiday shopping season saw retail sales in the U.S. from November first through Christmas Eve grow 5.1 percent to more than $850 billion, making it the best holiday shopping season in six years. But what did the cyber threat activity around this shopping frenzy look like?
To examine the cyber threat landscape over the 2018 holiday shopping season, RiskIQ conducted research using the RiskIQ Global Blacklist and mobile app database* looking for instances of malicious apps and URLs targeting 10 of the most trafficked brands on Black Friday. Following up our 2018 Black Friday Blacklist report which analyzed cyber threats targeting Black Friday and Cyber Monday in the weeks leading up to the events, this brief focuses on the period between Black Friday and New Year’s day.
The findings confirmed that cyber threat activity was consistent through the holiday shopping season, with cyber threat actors leveraging these ten mega-popular brands across both web and mobile.
Download the Snapshot for insights like these and much more
When organizations manage their entire attack surface, they understand what they look like from the outside-in, and can begin developing strategy that allows them to discover everything associated with their organization on the internet, both legitimate and malicious, and shrink its attack surface down to size.
Download the report here, and click here to find out how RiskIQ can help your organization manage its attack surface today.
The #Magecart supply-chain attack frenzy continues with AppLixir, RYVIU, OmniKick, eGain, AdMaxim, CloudCMS, and Picreel falling victim https://t.co/b7UWqL2PzW #BrowserThreats
Regarding Forbes: the skimmer was customized for Forbes, it wasn't an automated attack. Here's the rest of the infrastructure (not just for Forbes) they've been setting it up since January:
Fascinating learning about the cyber attacker's playbook from Yonathan Klijnsma: step 1: gain entry. 2. more reconnaissance 3. Theft, then profit #transportsecurity #TSC
Today at the #TransportSecurityCongress, RiskIQ's
@ydklijnsma spoke about the #Magecart breach of British Airways, which you can read more about here: https://t.co/cPqEqVVllj (Photo credit @SmartRailNews)
Context is everything! Here's how using Tags and Classifications in @RiskIQ PassiveTotal can get your team aligned and supercharge your investigations https://t.co/Wk5OfBZPu2 #ThreatHunting