Security business menu
Security business
HOME
To be elected
cause
Service
Handling Manufacturer
Examples/reports/
Blog/Glossary
Seminar/
video on demand
Event/Seminar
video on demand
User case
Security Report
blog
Glossary

About reports

In September this year, fraudulent withdrawals related to electronic payment services were discovered one after another, and it became a big topic. Behind this is that the COVID-19 (COVID-19) has increased the number of opportunities for online shopping and cashless payments this year, and various cyber risks aimed at this change have increased. Due to the increase in phishing scams and information leaks not only in Japan but also around the world, password list-type attacks are expected to become more active in the future, and the damage of account takeover and unauthorized use is expected to increase. As the importance of utilizing the web in business growth continues to increase year by year, measures for web security can be said to be an urgent issue. In this book, we will update the latest information on "online fraud", "reliance on third-party resources and web skimming", and "container technology", which are changing rapidly, from the contents released in fiscal 2019, explain the observed attack methods targeting websites, and introduce measures required in the future.

table of contents

1.First of all
2.Illegal login by bot
  • Lifecycle of an attacker using bots
  • Actual state of unauthorized login in Japan
  • Bot attack detection and mitigation
3. Sophisticated online fraud ■New content■
  • Recent Sophisticated Online Fraud Status and Global Trends
  • ever-changing attack patterns
  • Difficulty in balancing security and user convenience
  • Online fraud countermeasures to be considered in the future
4. The actual state of dependence on third-party resources and "Web skimming attacks" ■Updated content■
  • Introduction
  • Dependencies and issues with third-party libraries
  • What is a web skimming attack?
  • How the skimmer works
  • Sophisticated Skimmer -Skimmer specialized for anti-reverse engineering- 2019
  • Sophisticated Skimmer -Skimmer specialized for anti-reverse engineering- 2020
  • What motivates the development of more sophisticated skimmers?
  • What is a supply chain attack?
  • Countermeasures against web skimming attacks
  • Webスキミング攻撃への対策(「スキマーを読み込ませない」「データを流出させない」)
  • Countermeasures against web skimming attacks - What is Content Security Policy?
  • Countermeasures against Web skimming attacks - Points to note when introducing Content Security Policy
  • Summary
5. Recent Phishing Trends and Evasion of Detection
  • Trends in countermeasures against phishing
  • Attack techniques and trends
  • About detection avoidance and crawler bypass
  • Countermeasures against recent phishing attacks
6. Container technology and security ■New content■
  • Container image vulnerabilities
  • Threats to runtime
  • Security framework for container technology

Report "Attack Trends and Solutions Targeting Domestic Corporate Websites in 2020"

Click here to request materials

At Macnica, we offer a wide range of solutions for web application infrastructure that not only provide conventional countermeasures, but also take countermeasures against the latest threats. Please visit our Web Application Security page for the latest information.