Your organization’s leadership is 12 times more likely to be the target of a security incident and nine times more likely to be the target of a data breach than they were last year. Find out how they can be protected.
Read the Datasheet
Gift Cardsharks: The Massive Threat Campaigns Circling Beneath the Surface
Learn about the attack group primarily targeting gift card retailers and the monetization techniques they use.
Get the Report
Threat Hunting Workshop Series
Join one of our security threat hunting workshops to get hands-on experience investigating and remediating threats.
Attend an Upcoming Workshop
Inside Magecart: New RiskIQ & Flashpoint Research Report
Learn about the groups and criminal underworld behind the front-page breaches.
Threat Hunting Guide: 3 Must-Haves for the Effective Modern Threat Hunter
The threat hunting landscape is constantly evolving. Learn the techniques, tactics, and tools needed to become a highly-effective threat hunter.
Open source application vulnerabilities are a hot topic in the modern information security discourse, mainly because of incidents like Heartbleed. Heartbleed was an interesting case not because it was an OpenSSL vulnerability but because of the unsuspected prominence of OpenSSL among the enterprise. OpenSSL actually has a history of vulnerabilities, dating as far back as 2003 when it was discovered that OpenSSL didn’t automatically enable RSA Blinding.
In an article posted on SecurityWeek July 23rd sites a report published by Sonatype, it is reported that, “One in ten of the roughly 3,300 software developers, architects and application security pros who took part in the survey admitted that an open source component was, or it was suspected of being, the cause of a breach within the last year.”
Furthermore, they contend that 43% of organizations don’t have an open source policy. Of the 67% who do have an open source policy, 38% admit their open source policy doesn’t include security. The article points out findings from 2014 Verizon Breach Report identifying applications as the leading attack vector in breaches.
Compounding the issue as the SecurityWeek article points out, “most developers don’t track component vulnerabilities over time.” Apparently only 40% of the survey respondents believe that the development department is responsible for tracking and resolving newly discovered vulnerabilities in existing production applications. Only 18% believe it’s the responsibility of the application security department — another 18% believe it falls under IT Operations.
This grey area of control and responsibility provides perfect cover for cyber criminals searching for ways to infect websites and mobile applications. The staggering increase in breaches point to the need for improved security in this area, which is a significant challenge leveraging standard controls designed to prevent malware from getting in.
That is why RiskIQ technology is designed to take an outside looking in approach to threat detection. Leveraging RiskIQ allows security teams to visualize their public facing threat landscape. They can understand how their assets inter-connect and determine which assets can cause the most harm if exploited. Because of this, internal investigators will know where to start looking if signs of breach are detected.
Back to RiskIQ Blog
Tomorrow: RiskIQ's @joshuamayfield sits down with @forrester's @josh_zelonis to discuss what goes into a next-gen vulnerability management program, and why discovering unknowns is where it all starts: https://t.co/kCxgPVJ1sD
What are the keys to a Modern Vulnerability Risk Management Program? On Tuesday, @joshuamayfield and @josh_zelonis will examine why defending your organization's digital attack surface starts with being able to discover unknowns and investigate threats: https://t.co/kCxgPW0Ckb
IGNITE is just 10 days away! RSVP now to kick off #RSAC and party with Flashpoint, @elastic, @ThreatQuotient, @Siemplify, and @RiskIQ: https://t.co/hnlh0UhHEo
The largest UK #GDPR fine was £183m in 2018 as B.A. booking website was hit by Magecart ccard skimming code. @RiskIQ worked with https://t.co/E3JRdvCMWA and Shadowserver to take down the malicious domains. https://t.co/iiH69vbKFK