F5 Labs

MITRE ATT&CK, a framework that uniquely describes cyberattacks from the attacker’s perspective, is quickly being adopted by organizations worldwide as a tool for analyzing threats and improving security defenses.

A review of 2018-2020 cyberattacks at brokerages, investment funds, payment processors, and financial services organizations as well as API security incidents and open banking.

A review of 2018-2020 cyberattacks at brokerages, investment funds, payment processors, and financial services organizations as well as API security incidents and open banking.

A look at cybersecurity incidents at banks, credit unions, insurance companies, government-sponsored financial institutions, and stock exchanges.

A look at cybersecurity incidents at banks, credit unions, insurance companies, government-sponsored financial institutions, and stock exchanges.

The 2021 version of F5’s continuing analysis of the application security threat landscape explores ransomware, payment card theft, and account takeover.

The 2021 version of F5’s continuing analysis of the application security threat landscape explores ransomware, payment card theft, and account takeover.

A behind-the-scenes peek into the hidden world of human click farms.

A behind-the-scenes peek into the hidden world of human click farms.

Denial-of-service attacks are increasing and becoming more complex. We look at how attackers are attempting to bring down services around the world.

Denial-of-service attacks are increasing and becoming more complex. We look at how attackers are attempting to bring down services around the world.

Latin America’s cyberattack landscape saw continued focus on port 5900 and the targeting of common web vulnerabilities.

Latin America’s cyberattack landscape saw continued focus on port 5900 and the targeting of common web vulnerabilities.

How cybercriminals use credential stuffing attack tools OpenBullet and MailRanger to bypass CAPTCHA, compromise mailboxes, and reset passwords.

How cybercriminals use credential stuffing attack tools OpenBullet and MailRanger to bypass CAPTCHA, compromise mailboxes, and reset passwords.

How platform business models are at an increased risk of fraud when two or more separate parties collude.

How platform business models are at an increased risk of fraud when two or more separate parties collude.

We dig into the credential stuffing attack tool OpenBullet and look at configuring combolists, proxies, parse tokens, and check blocks for launching attacks.

We dig into the credential stuffing attack tool OpenBullet and look at configuring combolists, proxies, parse tokens, and check blocks for launching attacks.

Even with 99.95% efficacy of network security controls, bad actors can still monetize fraud. Security convergence is the way forward in surviving digital fraud.