2020, Authentication, Passwords and System Administration

2020

Authentication

Passwords

System Administration

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

“Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting.

Telecommunications

Telecommunications Authentication Passwords Accountability

FBI’s alert warns about using Windows 7 and TeamViewer

Security Affairs

FEBRUARY 14, 2021

The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account passwords. “TeamViewer’s legitimate use, however, makes anomalous activity less suspicious to end users and system administrators compared to typical RATs.” Windows 10).

Passwords

Passwords Social Engineering Software System Administration

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

API Security for the Modern Enterprise

IT Security Guru

SEPTEMBER 7, 2022

Per a recent report from Q4 2020 to Q4 2021 , the average number of APIs per company increased by 221% in 12 months and that API attack traffic grew by 681% while overall API traffic grew by 321%. password guessing). Tools like two-factor authentication, rate limiting, and DDoS protection can go a long way in securing APIs.

DDOS

DDOS Authentication Architecture Social Engineering

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

NSCS @cse_cst @CISAgov @FBI [link] — @U.S.CyberCommand (@US_CYBERCOM) August 3, 2020. The CISA agency provides recommendations for system administrators and owners to enhance the level of security of their organizations: Maintain up-to-date antivirus signatures and engines. Keep operating system patches up-to-date.

Malware

Malware Government Passwords System Administration

Critical vulnerabilities in Philips Vue PACS devices could allow remote takeover

SC Magazine

JULY 7, 2021

CISA assigned CVE-2020-1938 to the flaw, which stems from the use of Apache JServ (AJP). flaw, which is caused by improper authentication. Further, the Redis server operates on a remote host but is not protected by password authentication. The Redis component also holds the third 9.8

VPN

VPN Software System Administration Authentication

FBI: Credential Stuffing Leads to Millions in Fraudulent Transfers

SecureWorld News

SEPTEMBER 15, 2020

Between January and August 2020, unidentified actors used aggregation software to link actor-controlled accounts to client accounts belonging to the same institution, resulting in more than $3.5 Some of the credentials belonged to company leadership, system administrators, and other employees with privileged access.".

Banking

Banking Passwords Accountability DDOS

Most Common SSH Vulnerabilities & How to Avoid Them

Security Boulevard

DECEMBER 2, 2022

Also, remember how users can use keys rather than a password to login? So, imagine Susan is a system admin and she has access to several servers. She used SSH keygen to generate keys and she now can login to the systems via Secure Shell. These algorithms change and as they age, they become more vulnerable.

Risk

Risk Authentication Passwords Accountability

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

The agencies offered some sound cybersecurity advice for BlackByte that applies pretty generally: Conduct regular backups and store them as air-gapped, password-protected copies offline. Audit user accounts with administrative privileges and configure access controls with least privilege in mind, and use multifactor authentication.

Ransomware

Ransomware Encryption Backups Accountability

Vulnerability Management in the time of a Pandemic

NopSec

MARCH 16, 2020

Once you understand which systems form your telework attack surface ask yourself which vulnerabilities and misconfigurations they have. First of all, ask yourself whether all your remote working systems and related directory services they are tapping into have adequate password length policy, password expiration,and username randomization.

VPN

VPN Accountability Risk System Administration

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

What authentication methods does the provider support? The fourth biggest threat to public cloud security identified in CloudPassage’s report is unauthorized access (and growing – 53 percent, up from 42 percent in 2020). What are the results of the provider’s most recent penetration tests? Train your staff.

Penetration Testing

Penetration Testing Encryption Risk Technology

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Security Affairs

JUNE 2, 2020

Researchers disclosed a flaw in VMware Cloud Director platform, tracked as CVE-2020-3956 , that could be abused to takeover corporate servers. The vulnerability could potentially allow an authenticated attacker to gain access to corporate network, access to sensitive data, and control private clouds within an entire infrastructure.

System Administration

System Administration Accountability Advertising Authentication

Take action! Multiple Pulse Secure VPN vulnerabilities exploited in the wild

Malwarebytes

APRIL 21, 2021

Cybersecurity sleuths Mandiant report that they are tracking “12 malware families associated with the exploitation of Pulse Secure VPN devices” operated by groups using a set of related techniques to bypass both single and multi-factor authentication. CVE-2020-8243 a vulnerability in the Pulse Connect Secure < 9.1R8.2

VPN

VPN Authentication Malware System Administration

What Real-Life SaaS Attack Misconfiguration Exploits Can Teach Us

IT Security Guru

APRIL 12, 2022

There are a few notable exploited misconfigurations, from default built-in file sharing, and lack of password enforcement, albeit no password to multi-factor authentication (MFA), to the risks of legacy protocols and OAuth apps, that can bring a little clarity to understanding the complex landscape that is a company’s SaaS security posture.

CISO

CISO Passwords Marketing System Administration

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

RDP intrusions are typically the result of two attacker methods: brute force authentication attempts or a meddler-in-the-middle (MITM) attack. Remote desktop software’s sensitive influence over other devices means identity and access management (IAM), password security , and multi-factor authentication are critical for risk management.

VPN

VPN Software Authentication Encryption

A guide to OWASP’s secure coding

CyberSecurity Insiders

SEPTEMBER 21, 2021

Authentication and password management. Passwords are one of the least safe user authentication methods, yet they are also frequently used for web applications for safeguarding online data. Authentication is the procedure of confirming that a person, organization, or site is who they say they are.

Authentication

Authentication Passwords Software Accountability

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Normally account take overs are due to insecure passwords or recovery options, this is definitely something different. — Dave Kennedy (@HackingDave) July 15, 2020. link] pic.twitter.com/cVIyB44o6q — Eugene Kaspersky (@e_kaspersky) June 22, 2020. — Parisa Tabriz (@laparisa) January 26, 2020. Ingenious!

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

macOS 11’s hidden security improvements

Malwarebytes

AUGUST 18, 2021

At the WWDC 2020, Apple made a big deal of several new macOS and iOS features that were, in fact, big deals. The major new security features that would debut in macOS 11 were: Pointer Authentication Codes (PAC) , hardware-enforced Call Flow Integrity (CFI), implemented by Apple’s homegrown 64 bit ARM processor, the M1.

Firmware

Firmware Architecture Risk Engineering

Establish security boundaries in your on-prem AD and Azure environment

Security Boulevard

JUNE 20, 2022

On December 15, 2020, Microsoft published their new revised version of Securing Privileged Access on Microsoft docs, including the Enterprise Access Model, which encompasses both on-prem, Operational Technology (OT), Azure, and other cloud providers. They recommend tiered administration with dedicated admin accounts.

Accountability

Accountability Risk Authentication Passwords

Cyber Security Informer

China-linked threat actors have breached telcos and network service providers

FBI’s alert warns about using Windows 7 and TeamViewer

Webinars

Trending Sources

API Security for the Modern Enterprise

Webinars

US govt agencies share details of the China-linked espionage malware Taidoor

Critical vulnerabilities in Philips Vue PACS devices could allow remote takeover

FBI: Credential Stuffing Leads to Millions in Fraudulent Transfers

Most Common SSH Vulnerabilities & How to Avoid Them

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

Vulnerability Management in the time of a Pandemic

Top 12 Cloud Security Best Practices for 2021

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Take action! Multiple Pulse Secure VPN vulnerabilities exploited in the wild

What Real-Life SaaS Attack Misconfiguration Exploits Can Teach Us

Addressing Remote Desktop Attacks and Security

A guide to OWASP’s secure coding

Top Cybersecurity Accounts to Follow on Twitter

macOS 11’s hidden security improvements

Establish security boundaries in your on-prem AD and Azure environment

Stay Connected