2020, IT, Passwords and Systems administration - Information Management Today

2020

Passwords

Systems administration

Cisco fixes a static default credential issue in Smart Software Manager tool

Security Affairs

FEBRUARY 20, 2020

One of the flaws patched the IT giant is a critical issue, tracked as CVE-2020-3158 , while six vulnerabilities are rated as high-risk severity. The CVE-2020-3158 flaw is related to the presence of a system account that has a default and static password in the Smart Software Manager tool.

Systems administration

Systems administration Passwords Communications Access

FBI’s alert warns about using Windows 7 and TeamViewer

Security Affairs

FEBRUARY 14, 2021

The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account passwords. “TeamViewer’s legitimate use, however, makes anomalous activity less suspicious to end users and system administrators compared to typical RATs.”

Passwords

Passwords Systems administration Risk Access

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Trending Sources

List of data breaches and cyber attacks in February 2020 – 623 million records breached

IT Governance

MARCH 2, 2020

Unfortunately, the number of breached records doesn’t tell the full story, as there were a whopping 105 incidents – making February 2020 the second leakiest month we’ve ever recorded. The US Defence Information Systems Administration discloses 2019 cyber attack (unknown). You can check out the full list below. Ransomware.

Data breaches

Data breaches Ransomware Phishing Personal data

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

After identifying a critical Remote Authentication Dial-In User Service (RADIUS) server, the cyber actors gained credentials to access the underlying Structured Query Language (SQL) database [ T1078 ] and utilized SQL commands to dump the credentials [ T1555 ], which contained both cleartext and hashed passwords for user and administrative accounts.”

Authentication

Authentication Passwords Systems administration Access

Threat actors are attempting to exploit recently fixed F5 BIG-IP flaw

Security Affairs

JULY 6, 2020

F5 Networks has recently addressed a critical remote code execution (RCE) vulnerability, tracked as CVE-2020-5902, that resides in undisclosed pages of Traffic Management User Interface (TMUI) of the BIG-IP product. The CVE-2020-5902 vulnerability received a CVSS score of 10, this means that is quite easy to exploit.

Honeypots

Honeypots Systems administration Passwords Cybersecurity

Dissecting the malicious arsenal of the Makop ransomware gang

Security Affairs

MARCH 14, 2023

Makop gang did not conduct any significative retooling since 2020, which is a clear indicator of their effectiveness even after three years and hundreds of successful compromises. The gang leverages exposed remote administration services and internet-facing vulnerabilities to gain and maintain access to victim networks.

Ransomware

Ransomware Encryption Passwords Systems administration

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

NSCS @cse_cst @CISAgov @FBI [link] — @U.S.CyberCommand (@US_CYBERCOM) August 3, 2020. The CISA agency provides recommendations for system administrators and owners to enhance the level of security of their organizations: Maintain up-to-date antivirus signatures and engines. Keep operating system patches up-to-date.

Healthcare

Healthcare Passwords Government Systems administration

A Closer Look at the Snatch Data Ransom Group

Krebs on Security

SEPTEMBER 30, 2023

It continues: “Prior to deploying the ransomware, Snatch threat actors were observed spending up to three months on a victim’s system. “The command requires Windows system administrators,” Truniger’s ads explained. “Experience in backup, increase privileges, mikicatz, network.

Ransomware

Ransomware Data breaches Encryption Systems administration

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Security Affairs

MAY 2, 2021

Experts pointed out that ComplexCodes had been selling a “WeSupply Crypto Stealer” since May 2020., Organizations with effective spam filtering, proper system administration and up-to-date Windows hosts have a much lower risk of infection.” and WeSteal is likely simply an evolution of the WeSupply Crypto Stealer project.

Sales

Sales Systems administration Mining Risk

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

The agencies offered some sound cybersecurity advice for BlackByte that applies pretty generally: Conduct regular backups and store them as air-gapped, password-protected copies offline. And the Cybersecurity and Infrastructure Security Agency (CISA) added 15 more vulnerabilities to its list of actively exploited vulnerabilities.

Ransomware

Ransomware Encryption Agriculture Cybersecurity

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

The fourth biggest threat to public cloud security identified in CloudPassage’s report is unauthorized access (and growing – 53 percent, up from 42 percent in 2020). Public cloud infrastructure as a service (IaaS) may be less vulnerable than traditional data centers, but that doesn’t mean it’s without its own set of risks.

Cloud

Cloud Security Encryption Risk

Kaseya Breach Underscores Vulnerability of IT Management Tools

eSecurity Planet

JULY 6, 2021

After a series of highly publicized ransomware attacks this spring, the Kaseya attack most resembles the compromise of SolarWinds in late 2020. Kaseya’s flagship product is a remote monitoring and management (RMM) solution called the Virtual Systems Administrator (VSA) and is the product at the center of the current attack.

IT Ransomware B2B Access

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Security Affairs

JUNE 2, 2020

Researchers disclosed a flaw in VMware Cloud Director platform, tracked as CVE-2020-3956 , that could be abused to takeover corporate servers. Modify the system database to steal foreign virtual machines (VM) assigned to different organizations within Cloud Director. ” reads the advisory published by VMware. and 10.0.0.2.

Cloud

Cloud Systems administration Passwords Authentication

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Normally account take overs are due to insecure passwords or recovery options, this is definitely something different. — Dave Kennedy (@HackingDave) July 15, 2020. link] pic.twitter.com/cVIyB44o6q — Eugene Kaspersky (@e_kaspersky) June 22, 2020. — Parisa Tabriz (@laparisa) January 26, 2020. Ingenious!

Cybersecurity

Cybersecurity e-Discovery Passwords Information Security

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

Recent years presented a torrent of research showing how vulnerable RDP systems are for organizations not taking additional cybersecurity precautions. Like in the case of SolarWinds in 2020, masked threat actors aren’t afraid to linger for months during reconnaissance. Reconnaissance.

Security

Security Access Authentication Encryption

Cisco fixes a static default credential issue in Smart Software Manager tool

FBI’s alert warns about using Windows 7 and TeamViewer

Webinars

Trending Sources

List of data breaches and cyber attacks in February 2020 – 623 million records breached

Webinars

China-linked threat actors have breached telcos and network service providers

Threat actors are attempting to exploit recently fixed F5 BIG-IP flaw

Dissecting the malicious arsenal of the Makop ransomware gang

US govt agencies share details of the China-linked espionage malware Taidoor

A Closer Look at the Snatch Data Ransom Group

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

Top 12 Cloud Security Best Practices for 2021

Kaseya Breach Underscores Vulnerability of IT Management Tools

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Top Cybersecurity Accounts to Follow on Twitter

Addressing Remote Desktop Attacks and Security

Stay Connected