Magecart Strikes Again
Ticketmaster, British Airways, and Newegg have all been compromised. Who’s next? Read our research to see how we discovered the breaches.
IDG Connect: 2017 State of Enterprise Digital Defense Report
Findings quantify the security management gap and business impact of external web, social, and mobile threats.
Get the Research Report
Frost & Sullivan: The Digital Threat Management Platform Advantage
The material benefits of a platform-based approach to security outside the firewall.
Read the Report
2018 Holiday Shopping Season Threat Activity: A Snapshot
The 2018 holiday shopping season was the largest ever for online retailers, but threat actors filled their pockets, too.
So what did the threat activity around this shopping frenzy look like?
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
EMA Radar™ Q4 2017 Report
RiskIQ ranked a technology and value leader in digital threat intelligence management.
Get the Analyst Report
The 2018 holiday shopping season was a boon for retailers, but cyber threat actors filled their pockets, too.
As businesses innovate by expanding their online presence and migrating to the cloud, their digital footprints grow tenfold. This footprint, a collection of far-flung, client-facing assets outside the firewall that hackers can and will discover as they research their next cyber threat campaigns, becomes part of their attack surface.
Assets outside the firewall were the inroad for some of the worst hacks of 2018, and businesses continued to see attackers target these attack surfaces during the 2018 holiday shopping season.
The flurry of shopping activity over the 2018 holiday shopping season saw retail sales in the U.S. from November first through Christmas Eve grow 5.1 percent to more than $850 billion, making it the best holiday shopping season in six years. But what did the cyber threat activity around this shopping frenzy look like?
To examine the cyber threat landscape over the 2018 holiday shopping season, RiskIQ conducted research using the RiskIQ Global Blacklist and mobile app database* looking for instances of malicious apps and URLs targeting 10 of the most trafficked brands on Black Friday. Following up our 2018 Black Friday Blacklist report which analyzed cyber threats targeting Black Friday and Cyber Monday in the weeks leading up to the events, this brief focuses on the period between Black Friday and New Year’s day.
The findings confirmed that cyber threat activity was consistent through the holiday shopping season, with cyber threat actors leveraging these ten mega-popular brands across both web and mobile.
Download the Snapshot for insights like these and much more
When organizations manage their entire attack surface, they understand what they look like from the outside-in, and can begin developing strategy that allows them to discover everything associated with their organization on the internet, both legitimate and malicious, and shrink its attack surface down to size.
Download the report here, and click here to find out how RiskIQ can help your organization manage its attack surface today.
Meeting the mobile malware threat: Fabian Libeau, EMEA VP at @RiskIQ, looks at the growing threat posed by mobile malware to businesses, their brands and customers, and how it can be tackled. https://t.co/0W1J3M9bfv
Our EMEA VP, @flibeau, looks into the growing threat posed by mobile #malware to businesses, their brands, and customers via @MMMagTweets https://t.co/7gYaaf5UjW
Magecart’s web-based supply chain attacks are taking over the web. Our very own head of threat research, @ydklijnsma, discusses the phenomenon via @cbronline https://t.co/4b8cfIKPoo #Magecart
Web threats are redefining cybercrime. Today, #Magecart isn’t just a security problem; it’s also a business problem https://t.co/yggG0lWsK2
Magecart Group 4 take 2: We took down another 30+ domains which Group 4 setup right after our previous takedown and blog. We will continue our disruption efforts with @abuse_ch & @Shadowserver.
Here is the new set of domains that have been taken offline: https://t.co/CDbJgGqT1g