Data-plane security applications in adversarial settings
Guest Post: High-speed programmable switches are promising but share common design pitfalls that are potentially exploitable.
Tag: security
Investigating hidden root certificates in the wild
Guest Post: Study identifies more than 1 million hidden root certificates operated by 5,000 organizations, including government/enterprise agencies and TLS-interception software.
DNS vulnerability, configuration errors can cause DDoS
Guest Post: An overlooked DNS vulnerability that, when combined with a configuration error, is leading to massive DNS traffic surges.
Event Wrap: Bhutan Cybersecurity Week 2021
APNIC presented and delivered training at the Bhutan Cybersecurity Week 2021, held online from 20 to 25 December 2021.
HTTPA seeks to improve HTTPS trust issues
Guest Post: It’s time to upgrade HTTPS to better handle privacy concerns.
Web cache deception escalates!
Guest Post: WCD has consequences well beyond personal information leaks — attacks targeting non-authenticated pages are highly damaging.
How to analyse a cyber attack chain: A cyber drill scenario from BGD e-GOV CIRT
Guest Post: BGD e-GOV CIRT takes us through the steps of a recent Exchange cyber drill run for local financial institutions in Bangladesh.
Three of the best: How to
‘How to’ posts are a great way to learn how to use a new tool, troubleshoot problems, or perform advanced tasks. Here are three of 2021’s best.
Three of the best: Security
Here are APNIC Blog’s top three posts related to security for 2021.
Preparing for the next large-scale IoT botnet attack
Guest Post: Emerging IoT threats are quickly evolving and adapting to current defences.