Incapula, Akamai, CloudFlare vs Man-in-Middle Attack

Prince (CEO) of CloudFlare is a marked man. According to an article dated in June 2012, hackers managed to access his personal email address. They obtained it through social engineering techniques used against his AT&T mobile device, and Google password resetting feature. The end result, hackers managed to access his credentials, then use it to obtain data to access CloudFlare’s email system. Prince caught on right away, and in no time the hackers were fighting with the CloudFlare team in real time. It was real time cyber warfare.

CloudFlare was young back then, and they’ve come a long way in defeating these kinds of attacks. Sophisticated hackers are not kids, but some of the best mathematicians in the world. Email is one of the tools that hackers favor most in penetrating networks and applications. According to Phishlabs, there is a new Man-in-the-middle attack targeting banks. The first step in the attack; email is sent to the victim with an innocent looking attachment containing malware. Next, the file is opened, and the malware program is executed.

Finally, the malware changes the DNS settings of the infected PC, installs a fake certificate, and creates a backdoor for the hacker to perform remote access functions. To the end user, everything looks normal. However, when the victim transacts with a bank, the hacker intercepts the request, injects some code into it, and ultimately steals money. The new CyberSecurity CDN, like Incapsula have developed security features that help protect against this type of attack. Incapsula offers protection against the use of fake certificates, rogue DNS communications and backdoor infiltration. The CyberSecurity CDN plays an important role in the Defense-in-Depth strategy.