The community blog posts are written by InfoSec professionals from diverse sectors who have kindly provided articles for free to support...

In computing terms an exploit is when.a criminal takes advantage of a vulnerability or flaw in software applications to install malicious...

Zero Trust is a type of cybersecurity framework created by former Forrester employee John Kindervag in 2009. The concept holds that...

An email gateway is a security mechanism that monitors incoming and outgoing email traffic and analyses the emails with a pre-defined set...

Credential stuffing is when a criminal uses credentials that have been leaked via previous data breaches to attempt to access other...

A distributed denial-of-service (DDoS) attack is a type of cybercrime campaign that aims to inundate a computer system with multiple...

The Hypertest Transfer Protocol (HTTP) is a set of communication rules that transfers information across the internet. For example, your...

Ransomware is a type of malware that is designed to deny you access to your computer and files by either locking or encrypting them. The...

When a criminal has taken all that effort to install malware on your computer or network they want it to stay there undetected and active...

The community blog posts are written by InfoSec professionals from diverse sectors who have kindly provided articles for free to support...

It can be really hard to get your social media accounts back after they have been compromised, so let's look at ways to keep them safer....

Software and technology evolve fast, and at times they may have an inadvertent flaw in them. Vulnerabilities in technology or software...

An Advanced Persistent Threat (APT) is usually a nation-state sponsored cybercrime group that aims to stealthily remain in a computer...

The community blog posts are written by InfoSec professionals from diverse sectors who have kindly provided articles for free to support...

Business Email Compromises (BEC) are a type of email based fraud where a criminal sends an email, impersonating a business’ CEO/...

Demystify Cyber analysed the payload from a malicious email campaign from 9 January 2022 that contains an attachment called Purchase...

Remote access scams are types of fraud that include faked technical support and faked refunds. The criminals aim to convince their...

DISCLAIMER - The information on this page is not intended as financial or investment advice. The Demystify Cyber team are interested in...

Cyber criminals are using increasingly sophisticated methods to exploit individuals and businesses to obtain sensitive information and...

Cross site scripting (XSS) is where malicious code is injected into legitimate, but vulnerable, websites to deliver malware to the...