Connect with us

Business

Public-facing applications emerge as top cybercrime target, Cisco Talos warns
Advertisement

Business

Oracle Q2 Preview: Ignore OpenAI Backlog At Your Peril

Business

First sales gas as Beach’s Waitsia finally comes online

Business

Hershey: Macros Improving, But The Stock Still Isn’t Sweet Enough To Buy (NYSE:HSY)

Business

EPS launches residential arm

Business

Why Laser Engraving Technology Could Be Your Ticket to Entrepreneurship

Business

Is TSMC Slowing Down? Not For Long (NYSE:TSM)

Business

EPA opts against Scott River review

Business

Richard Walker to Become Labour Peer as Starmer Courts Business Leaders

Business

IndiGo stock fall a ‘temporary blip’, says Shobit Singhal

Business

WillScot: Market's Impatience Has Created An Opportunity To Own A High-Quality 'Tollbooth'

Business

Thailand Conducts Airstrikes on Cambodia Following Soldier's Death

Business

Analysis: Struggling for balance in middle years

Business

SpiceJet shares rise 13%, extending second-day rally amid IndiGo operational disruptions

Business

Silver Beech Capital Q3 2025 Investor Letter

Business

Bluewaters disputes $5m ERA fine

Business

Marvell Technology Stock: Celestial AI Acquisition Is A Game Changer (NASDAQ:MRVL)

Business

BHP probes acid leak at the Pilbara's first iron ore mine

Business

RBI may need to inject further Rs 2 lakh crore to let rates transmit

Business

Victoria’s Secret Stock: A Glamorous Comeback In The Making - Hold (NYSE:VSCO)

Business

Trump-brokered peace deal breaks as Thailand attacks Cambodia; What triggered clashes that has displaced nearly 4 lakh people

Business

Zedcor: Institution Level Quality And Uplisting To The TSX To Be A Catalyst

Business

Itochu joins Pilbara ammonia bulk carrier refueling plan

Business

Monetary Policy: Everything Old Is New Again...But Not The Same

Business

America's AI race success depends on winning the energy race first: expert

Business

Thailand’s 53% Airport Tax Hike for 2026: What It Means for Your Flights and Future Travel Plans!

Business

Chalice halves Gonneville price tag as it plots development pathway

Business

McLaren’s Lando Norris wins F1 championship after Yas Marina thriller

Business

Speb Adhesives shares to debut today. GMP hints at muted gains

Business

Donville Kent Asset Management December 2025 Commentary

Business

Locksley taps investors for $17m

Business

After $102mn jewel heist, water leakage damages 400 rare books in Louvre

Business

Wakefit IPO: Check GMP, price band, review, subscription and other details

Business

The Rate Cut May Produce A 'Sell The News' Event

Business

Can Japan get more female business leaders?

Business

Government Distributes 9,000-Baht Relief Payments to Southern Flood Victims

Business

Brookfield, GIC seal $4bn National Storage deal

Business

UK arenas hit by huge business rates surge as valuations rise up to 300 percent

Business

China's Central Bank extends gold-buying as metal's rally cools

Business

Chewy: Solid Execution, But The Stock Looks Reasonably Valued (NYSE:CHWY)

Business

Public-facing applications emerge as top cybercrime target, Cisco Talos warns

Published

1 week ago

on

Public-facing applications cyberattack

Public-facing applications have overtaken other entry points as the primary target for cybercriminals, according to Cisco Talos’ Q3 2025 Incident Trends Report.

The report, issued by one of the world’s largest commercial threat intelligence teams, highlights a surge in attacks exploiting newly disclosed Microsoft SharePoint vulnerabilities, alongside persistent ransomware activity and growing abuse of multi-factor authentication (MFA).

More than 60 per cent of incidents during the quarter began with the exploitation of public-facing applications, a steep rise from less than 10 per cent in the previous quarter. The increase was driven by attacks using the ToolShell exploit chain, which targeted on-premises SharePoint servers immediately after Microsoft’s vulnerability disclosure.

Advertisement

Cisco Talos noted that some attacks occurred within a day of the advisory, illustrating how quickly threat actors act once zero-day vulnerabilities are made public.

“The Talos data shows how quickly attackers exploit newly disclosed vulnerabilities in public-facing applications,” said Fady Younes, Managing Director for Cybersecurity at Cisco Middle East, Africa, Türkiye, Romania and CIS. “For organisations in the UAE expanding digital and cloud services, exploit protection and strong network segmentation are critical to reducing the risk of disruptive attacks.”

Ransomware accounted for around 20 per cent of incidents in Q3 2025, down from 50 per cent in the previous quarter, but remains a major threat. Cisco Talos identified several new ransomware variants, Warlock, Babuk, and Kraken, in addition to well-known families such as Qilin and LockBit.

In one instance, attackers deployed ransomware within two days of breaching an organisation’s network. The group Storm-2603, believed to operate from China, used Velociraptor, a legitimate security tool, marking its first known use in ransomware operations.

Advertisement

The report also found that nearly one-third of incidents involved attackers bypassing or abusing MFA. Common techniques included overwhelming users with repeated login prompts, known as “MFA bombing,” and exploiting weaknesses in configuration or implementation. Cisco Talos warned that while MFA remains essential, it must be paired with monitoring and strong policy enforcement to maintain its effectiveness.

Overall, the report urges organisations to prioritise rapid patching, network segmentation, and real-time threat intelligence as attackers continue to evolve their tactics and exploit newly exposed vulnerabilities in public-facing systems.

Source link

Advertisement
Related Topics:
Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2025 Wordupnews.com