2015, Internet and System Administration

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Krebs on Security

SEPTEMBER 2, 2019

Federal prosecutors in California have filed criminal charges against four employees of Adconion Direct , an email advertising firm, alleging they unlawfully hijacked vast swaths of Internet addresses and used them in large-scale spam campaigns.

Media

Media Government Marketing Internet

Microsoft’s Patch Tuesday updates for March 2020 fix 115 issues

Security Affairs

MARCH 11, 2020

Microsoft’s Patch Tuesday updates for March 2020 address 115 vulnerabilities, 26 issues affecting Windows, Word, Dynamics Business Central, Edge, and Internet Explorer have been rated as critical severity. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

System Administration

System Administration Advertising Internet Internet

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

NEROWOLFE A search on the ICQ number 669316 at Intel 471 shows that in April 2011, a user by the name NeroWolfe joined the Russian cybercrime forum Zloy using the email address d.horoshev@gmail.com , and from an Internet address in Voronezh, RU. 2011 said he was a system administrator and C++ coder. “P.S. .

Cybercrime

Cybercrime Ransomware Accountability Government

Yomi Hunter Catches the CurveBall

Security Affairs

JANUARY 21, 2020

Many system administrators and companies were rushing to update internet exposed machines, like web servers or gateways, worried about possible remote code execution, reviving the EternalBlue /WannaCry crisis in their mind. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

System Administration

System Administration Malware Advertising Risk

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

SecureList

OCTOBER 13, 2022

In addition, manual mitigation steps can be undertaken by system administrators to prevent successful exploitation (see below). The underlying cause is another vulnerability ( CVE-2015-1197 ) in cpio, for which a fix is available. It invokes cpio and CVE-2015-1197 is triggered.

System Administration

System Administration Malware Passwords Internet

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Security Affairs

OCTOBER 17, 2018

The exploitation of this vulnerability could cause major problems on the Internet. million servers running RPCBIND on the Internet. “We then decided to open a server with port 111 exposed on the Internet, with the same characteristics as those who were attacking us and we were monitoring that server for weeks.

DDOS

DDOS Internet Internet System Administration

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

Security Affairs

MARCH 10, 2020

“They exhibit extensive knowledge of systems administration and common network security misconfigurations, perform thorough reconnaissance, and adapt to what they discover in a compromised network.” ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Cybercrime Social Engineering Banking

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Security Affairs

SEPTEMBER 2, 2019

Cashdollar explained that threat actors started scanning the Internet for Intel systems that would accept files over SSH port 22 to maximize their efforts. Summarizing, crooks extended the list of targets passing from Arm and MIPS-powered devices to Intel systems. . ” Cashdollar concludes. Pierluigi Paganini.

IoT

IoT Cryptocurrency Malware System Administration

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

. “ our research has uncovered new vulnerabilities, which we collectively dubbed USBAnywhere , in the baseboard management controllers (BMCs) of Supermicro servers, which can allow an attacker to easily connect to a server and virtually mount any USB device of their choosing to the server, remotely over any network including the Internet.”

Hacking

Hacking Firmware Media Authentication

Backdoored Webmin versions were available for download for over a year

Security Affairs

AUGUST 19, 2019

Webmin is an open-source web-based interface for system administration for Linux and Unix. Searching with Shodan for internet-exposed Webmin installs, it is possible to find over 217,000 instances, most of them located in the United States, France and Germany.

System Administration

System Administration DNS Passwords Advertising

Crooks continue to abuse exposed Docker APIs for Cryptojacking

Security Affairs

OCTOBER 28, 2018

The Center for Internet Security (CIS) has a reference that can help system administrators and security teams establish a benchmark to secure their Docker engine. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Docker Trusted Registry ). Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Engineering System Administration Advertising

Roboto, a new P2P botnet targets Linux Webmin servers

Security Affairs

NOVEMBER 21, 2019

The Roboto botnet spreads by compromising systems by exploiting the Webmin RCE vulnerability tracked as CVE-2019-15107 to drop its downloader module on Linux servers running vulnerable installs. Webmin is an open-source web-based interface for system administration for Linux and Unix. ” reads the analysis.

DDOS

DDOS System Administration DNS Advertising

Protecting America’s Critical Infrastructure

Thales Cloud Protection & Licensing

JULY 23, 2019

If you’re like millions of other Americans, your TV is connected to the Internet and uses technology generated from the nation’s power grid. But the energy sector also underpins our emergency and response systems, our hospitals and healthcare, our schools, our businesses, and virtually everything we do as a society.

Energy and Utilities

Energy and Utilities Digital transformation Encryption Technology

Thousands of RDM refrigeration systems exposed online are at risk

Security Affairs

FEBRUARY 10, 2019

“They all come with a default username and “1234” as the default password, which is rarely changed by system administrators.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – refrigeration systems, hacking). Pierluigi Paganini.

Risk

Risk Passwords System Administration Advertising

Only now we known that International Civil Aviation Organization (ICAO) was hacked in 2016

Security Affairs

MARCH 1, 2019

“Mail server, domain administrator and system administrator accounts were all affected, giving cyberespions access to the past and current passwords of more than 2,000 ICAO system users. The hackers scan the Internet for vulnerable servers that could lead to compromising valuable targets. “In

Hacking

Hacking System Administration Advertising Accountability

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

Domain The team knew how much BackTrack was growing in popularity, and as they did not switch the project name when using Ubuntu, it was time to create its own place on the Internet. System Upgrades When the team started work switching from Slax to Ubuntu, they grabbed the latest release at the time (8.10 - Intrepid Ibex).

InfoSec

InfoSec Penetration Testing Architecture Software

The Phight Against Phishing

Digital Shadows

AUGUST 17, 2021

It could be a system administrator who has access to sensitive defense information and recently just met an attractive fitness influencer on social media (hello, Iran !). A compromised customer account might use business email compromise tactics to phish everyone in that customer’s circle. How do we know this?

Phishing

Phishing Accountability Social Engineering Mobile

Ransomware Gangs and the Name Game Distraction

Krebs on Security

AUGUST 5, 2021

After acknowledging someone had also seized their Internet servers, DarkSide announced it was folding. REvil’s last big victim was Kaseya , a Miami-based company whose products help system administrators manage large networks remotely. Department of Justice. ” That CrowdStrike report was from July 2019.

Ransomware

Ransomware Cybercrime Malware System Administration

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

The CISA agency provides recommendations for system administrators and owners to enhance the level of security of their organizations: Maintain up-to-date antivirus signatures and engines. Keep operating system patches up-to-date. Scan all software downloaded from the Internet prior to executing.

Malware

Malware Government System Administration Passwords

GAO Report shed the lights on the failures behind the Equifax hack

Security Affairs

SEPTEMBER 10, 2018

“In July 2017, Equifax system administrators discovered that attackers had gained. unauthorized access via the Internet to the online dispute portal that maintained. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. documents used to resolve consumer disputes (see fig.). individuals.”

Hacking

Hacking Encryption Government System Administration

Cyber Security Informer

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Microsoft’s Patch Tuesday updates for March 2020 fix 115 issues

Trending Sources

How Did Authorities Identify the Alleged Lockbit Boss?

Yomi Hunter Catches the CurveBall

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

USBAnywhere BMC flaws expose Supermicro servers to hack

Backdoored Webmin versions were available for download for over a year

Crooks continue to abuse exposed Docker APIs for Cryptojacking

Roboto, a new P2P botnet targets Linux Webmin servers

Protecting America’s Critical Infrastructure

Thousands of RDM refrigeration systems exposed online are at risk

Only now we known that International Civil Aviation Organization (ICAO) was hacked in 2016

Happy 10th anniversary & Kali's story.so far

The Phight Against Phishing

Ransomware Gangs and the Name Game Distraction

US govt agencies share details of the China-linked espionage malware Taidoor

GAO Report shed the lights on the failures behind the Equifax hack

Stay Connected