OpIsrael starts in a few hours. I've spent the last month scanning Israeli companies. Most aren't ready.
Hacktivist groups build target lists weeks ahead. Public DNS, Shodan, crt.sh. On the day - volumetric hits on government sites, banks, telecom. Defacements on smaller targets. Old breach data repackaged as "new leaks."
The companies that actually get hurt aren't the big names with SOCs. They're the mid-size SaaS company, the logistics platform, the healthcare portal nobody thought was a target.
I've been scanning Israeli companies for the past few months. Organizations protect the front door and forget the rest. Subdomains resolving straight to origin IPs. API gateways with no rate limiting. Staging environments indexed by Google.
Our scans map cloud-layer protection from the outside - CDN, cloud WAF, scrubbing. We can't see on-prem appliances behind the ISP link, and some organizations may have hardware DDoS mitigation we don't detect. But what we consistently find is that even organizations with cloud protection only cover a fraction of their actual attack surface with it.
Since October 2023, this isn't a one-day event anymore. April 7th just concentrates ongoing campaigns.
DM me your domain. I'll tell you what an attacker sees before the day is over.
#OpIsrael #CyberSecurity #AttackSurface #ResilienceTesting
Hacktivist groups build target lists weeks ahead. Public DNS, Shodan, crt.sh. On the day - volumetric hits on government sites, banks, telecom. Defacements on smaller targets. Old breach data repackaged as "new leaks."
The companies that actually get hurt aren't the big names with SOCs. They're the mid-size SaaS company, the logistics platform, the healthcare portal nobody thought was a target.
I've been scanning Israeli companies for the past few months. Organizations protect the front door and forget the rest. Subdomains resolving straight to origin IPs. API gateways with no rate limiting. Staging environments indexed by Google.
Our scans map cloud-layer protection from the outside - CDN, cloud WAF, scrubbing. We can't see on-prem appliances behind the ISP link, and some organizations may have hardware DDoS mitigation we don't detect. But what we consistently find is that even organizations with cloud protection only cover a fraction of their actual attack surface with it.
Since October 2023, this isn't a one-day event anymore. April 7th just concentrates ongoing campaigns.
DM me your domain. I'll tell you what an attacker sees before the day is over.
#OpIsrael #CyberSecurity #AttackSurface #ResilienceTesting