F5 Labs

These are the top threats you should know about this week.

Now that we’ve explored cloud security failures, we’re going to explain defensive strategies laid out by deployment model.

Now that we’ve explored cloud security failures, we’re going to explain defensive strategies laid out by deployment model.

Your app security still relies on routers that can reach end-of-life. F5 Labs' Preston Hogue writes for SecurityWeek, discussing the need to think of your entire stack when protecting your apps.

A deep dive into a wide variety of cloud-related security data breaches, both maliciously caused and accidental.

A deep dive into a wide variety of cloud-related security data breaches, both maliciously caused and accidental.

IoT botnet Gafgyt targets popular routers through RCE vulnerabilities, and even removes competing malware.

IoT botnet Gafgyt targets popular routers through RCE vulnerabilities, and even removes competing malware.

New campaign activity for remote code execution (RCE) vulnerabilities disclosed this year picked up in the month of November.

New campaign activity for remote code execution (RCE) vulnerabilities disclosed this year picked up in the month of November.

The same countries that attacked the rest of the world also attacked systems in Russia, but from different networks and IP addresses.

The same countries that attacked the rest of the world also attacked systems in Russia, but from different networks and IP addresses.

Attackers targeted applications and conducted credential stuffing attacks against systems in Asia during the fall of 2019.

Attackers targeted applications and conducted credential stuffing attacks against systems in Asia during the fall of 2019.

A Mirai variant named Echobot appeared mid-2019. Echobot has been seen expanding its arsenal to 71 exploits, targeting SCADA systems and IoT devices.

A Mirai variant named Echobot appeared mid-2019. Echobot has been seen expanding its arsenal to 71 exploits, targeting SCADA systems and IoT devices.

Europe saw more in-region attack traffic—the hardest kind to filter out—than any of the 8 regions of the world we analyzed.

Europe saw more in-region attack traffic—the hardest kind to filter out—than any of the 8 regions of the world we analyzed.

Attackers probed Australian applications for vulnerabilities on the most commonly used ports, and credential stuffing attacks were prevalent.

Attackers probed Australian applications for vulnerabilities on the most commonly used ports, and credential stuffing attacks were prevalent.