|
You are here |
smagin.fyi | ||
| | | | |
www.sjoerdlangkemper.nl
|
|
| | | | | This article describes how cross site request forgery works, how sites defend against it and how to bypass these defenses. | |
| | | | |
educatedguesswork.org
|
|
| | | | | ||
| | | | |
timtech.blog
|
|
| | | | | Fun with Cross-Site Request Forgery (CSRF) in a creative Web Timing Attack scenario, highlighting the risks inherent to SameSite=None session cookies. | |
| | | | |
www.darktrace.com
|
|
| | | [AI summary] The provided text discusses two main topics: first, a detailed analysis of a cyberattack on Marks & Spencer (M&S) that spanned multiple domains, including identity, network, cloud, and email, and second, the challenges and solutions in investigating cross-domain cyber threats. The M&S attack involved social engineering, credential theft, and ransomware deployment. The text highlights the need for advanced tools like Darktrace's Cyber AI Analyst to automate and streamline cross-domain investigations, enabling faster and more effective threat response. | ||