IT Security & Compliance
Broken Authentication is the second most important flaw in the ranking of OWASP Top 10. Using this loophole, an attacker may take control of the device user accounts. In the worst case, they may be helped to gain full mastery of the system. The probability of broken authentication is not limited to a fixed attack […]
Injection attacks apply to a wide class of attack vectors that enable an attacker to supply untrusted information to a program that is interpreted by an interpreter as part of an order or demand that changes the execution of that program. Injection assaults are probably the common and most disruptive assaults on web applications. These […]
Recently, in the month of August 2020, our team at TIKAJ conducted an extensive research to discover open Mongodb instances all over the internet. Even after 8 years of being reported Mongodb open port vulnerabilities are being exploited in wild for data breaches. With this research, we wanted to find out how educated and serious […]
Hollywood movies give us an insight as to how it is going to feel when someone puts a gun on your head and asks you for ransom. The good part is we can anticipate the reaction and prevention of any such situation. However, virtual life is significantly different from the ones we see in reel […]
Evolving and progressing in life goes hand in hand. One must always make efforts to progress so life doesn’t get stagnant. However, in recent years phishers seem to have taken this mantra way too seriously; as every year they tend to come up with new tactics to phish their victims. Just with the onset of […]
While Information Security focuses on protecting confidentiality, integrity, and availability of information, Cyber Security protects cyberspace environment from cyber attacks. RBI (Reserve Bank of India) “Cyber Security Policy” guides the Banks in India for designing and implementing next generation cyber protection capabilities. As per RBI, banks should implement basic cyber security controls to improve their […]
A person is always very particular and vigilant when it comes to his or her close one’s secrets. They try to protect it while keeping their lives on stake. This is because they understand the sensitivity and tenderness of the secret and the chaos it can create if they beans get spilled. The same situation […]
Industrial Development Company of Puerto Rico was hit by a phishing scam which cost the government agency more than $2.6 million. According to this report the phishing scam started targeting the company in January and the government-owned organization performed the transaction on January 17th. The organization allegedly received an email alleging a shift to a […]
When we hear the word Phishing, what image do we visualize exactly? Don’t we see a fisherman, sitting with a fishing stick to trap fishes? Yes, we do. Oh! I think I’ve made a small mistake. I wrote “Phishing” instead of “Fishing”. But was it really a mistake that was made? No. I’ve written it […]
The prevalence of threats to cybersecurity can compromise the security of your organization’s data and cause serious ramifications. Therefore, it is important to take adequate measures to safeguard your organization from online attacks. Here are the top 10 tips that can help strengthen the security of your enterprise Conclusion Fighting against malware that can sneak […]
