Security Weekly, recognized by their “Hack Naked” branding and weekly podcasts that thousands of people consume on many different aspects of Information/Cyber Security, is often a great resource for
Introducing CQ botDefense SaaS
Many of our customers are digitally transforming their legacy applications to deliver a more modern, feature-rich user experience for their customers, partners and employees. Such modernized
Old Habits Die Hard: Industrial Controls, Credential Sharing and Password Spraying
For years, the security implications related to Industrial Control Systems, SCADA and Industrial Internet of Things have been treated as a low(er) priority because these systems were closed, embedded
The Rise & Fall of Single Request Bots
The cat and mouse game between bot operators executing automated attacks and prevention vendors has become increasingly sophisticated, with each side applying more intelligence to their respective
Disney+ Account Takeovers: How the Information is Used
I recently joined Cequence as a Hacker in Residence and am excited to focus on the world of automated attacks and how BOTs are used for things like account take over and credential stuffing attacks.
Tales from the Front Lines: Protecting Financial Services Mobile Application APIs From Automated Attacks
Next week we will be at FS-ISAC in Washington DC (booth #60) to present (Monday, Nov. 18, 4:15PM-5:00PM) and talk with financial services organizations about how we can help them prevent fraud and
Tales from the Front Lines: A Long Weekend Ruined for Whom?
Automated bot attacks are a bit different than other types of cyber-attacks in several ways. First, these attacks are difficult to defend against because they appear to be legitimate uses of the
Here’s Why Online Holiday Inventory is Often Gone Before You Get There
As the holidays draw nearer and consumers begin frequenting their favorite online retailers in search of the perfect gift, it seems an appropriate time to put the spotlight on a topic that gives
API Security Podcast: How APIs Enable Digital Transformation and Automated Attacks
It’s no secret that APIs are an invaluable tool for application developers who are tasked with doing more with less. In this Aite Radio Podcast, Alissa Knight and Shreyans Mehta, Co-founder and CTO of
How Zoosk Detects and Mitigates Malicious Bots
A leader in online dating, Zoosk is committed to delivering personalized matches to its 35+ million members. With the ultimate goal of creating lasting and meaningful relationships, protecting their
Prying-Eye Vulnerability: Direct-to-API Enumeration Attack Enables Snooping
The Prying-Eye vulnerability is an example of an enumeration attack that targets web conferencing APIs with a bot that cycles through (enumerates) and discovers valid numeric meeting IDs. If the
Analysis: Preventing Fake Account Creation and Romance Scams
Average Theft Prevented Per Romance Scam: $12,000 Credentials represent one of the Four Pillars of Detection that the CQ Prime Research Team uses to help our customers understand and ultimately