Security Affairs

FEBRUARY 2, 2021

Ransomware operators are exploiting two VMWare ESXi vulnerabilities, CVE-2019-5544 and CVE-2020-3992, to encrypt virtual hard disks. Security experts are warning of ransomware attacks exploiting two VMWare ESXi vulnerabilities, CVE-2019-5544 and CVE-2020-3992 , to encrypt virtual hard disks. Pierluigi Paganini.

Encryption 93

Encryption Ransomware System Administration Hacking 93

Security Affairs

AUGUST 9, 2021

The Taiwanese company urges its customers to enable multi-factor authentication where available, enable auto block and account protection, and to use string administrative credentials, . System administrators that have noticed suspicious activity on their devices should report it to Synology technical support.

Ransomware 130

Ransomware System Administration Malware Authentication 130

Security Affairs

FEBRUARY 20, 2020

One of the flaws patched the IT giant is a critical issue, tracked as CVE-2020-3158 , while six vulnerabilities are rated as high-risk severity. The CVE-2020-3158 flaw is related to the presence of a system account that has a default and static password in the Smart Software Manager tool. SecurityAffairs – hacking).

Software 109

Software System Administration Advertising Accountability 109

Security Affairs

DECEMBER 24, 2020

The DTLS protocol is based on the stream-oriented Transport Layer Security (TLS) protocol and is intended to provide similar security guarantees. — Marius Sandbu (@msandbu) December 20, 2020. The attacks began last week, the systems administrator Marco Hofmann first detailed them. 24 220.167.109.0/24

DDOS 115

DDOS System Administration VPN Authentication 115

Security Affairs

JANUARY 21, 2020

Yomi implements detection for CurveBall exploits and also supports CVE-2020-0601 exploit detection even for signed Powershell modules. . The recent CurveBall vulnerability shook the Info-Sec community worldwide: a major vulnerability reported directly by the US National Security Agency. Yomi Hunter Catches CVE-2020-0601.

System Administration 87

System Administration Malware Advertising Risk 87

Security Affairs

JULY 6, 2020

F5 Networks has recently addressed a critical remote code execution (RCE) vulnerability, tracked as CVE-2020-5902, that resides in undisclosed pages of Traffic Management User Interface (TMUI) of the BIG-IP product. The CVE-2020-5902 vulnerability received a CVSS score of 10, this means that is quite easy to exploit.

System Administration 67

System Administration Advertising Hacking Banking 67

Security Affairs

DECEMBER 30, 2021

The experts explained that malware targeting iLO could be very insidious because it runs with high privileges (above any level of access in the operating system), very low-level access to the hardware, and it cannot be detected by admins and security software that doesn’t inspect iLO. SecurityAffairs – hacking, iLOBleed).

Firmware 134

Firmware Malware System Administration Technology 134

Security Affairs

MARCH 14, 2023

Makop gang did not conduct any significative retooling since 2020, which is a clear indicator of their effectiveness even after three years and hundreds of successful compromises. The gang leverages exposed remote administration services and internet-facing vulnerabilities to gain and maintain access to victim networks.

Ransomware 82

Ransomware Software System Administration Encryption 82

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Cybersecurity and Infrastructure Security Agency (CISA) in August 2020. SecurityAffairs – hacking, supply chain attack).

Malware 99

Malware System Administration Hacking Media 99

Security Affairs

JUNE 3, 2023

At the end of October 2020, the US-CERT published a report on Kimusky’s recent activities that provided information on their TTPs and infrastructure. The advisory includes potential mitigation measures for email recipients and recipients’ systems administrators.

Social Engineering 89

Social Engineering Phishing System Administration Engineering 89

Security Affairs

JUNE 8, 2022

Ensure that you have dedicated management systems [ D3-PH ] and accounts for system administrators. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”).

Telecommunications 95

Telecommunications Authentication Passwords Accountability 95

Malwarebytes

FEBRUARY 17, 2021

Yandex, a European multinational technology firm best known for being the most-used search engine in Russia, has revealed it had a security breach, leading to the compromise of almost 5,000 Yandex email accounts. The company says it spotted the breach after a routine check by its security team.

Accountability 98

Accountability Social Engineering System Administration Engineering 98

Security Affairs

FEBRUARY 14, 2021

. “Beyond its legitimate uses, TeamViewer allows cyber actors to exercise remote control over computer systems and drop files onto victim computers, making it functionally similar to Remote Access Trojans (RATs),” states the FBI’s PIN alert. SecurityAffairs – hacking, FBI). Pierluigi Paganini.

Passwords 139

Passwords Social Engineering Software System Administration 139

Security Affairs

MAY 2, 2021

Experts pointed out that ComplexCodes had been selling a “WeSupply Crypto Stealer” since May 2020., Organizations with effective spam filtering, proper system administration and up-to-date Windows hosts have a much lower risk of infection.” SecurityAffairs – hacking, WeSteal). Pierluigi Paganini.

Cryptocurrency 107

Cryptocurrency Malware Advertising System Administration 107

Security Affairs

AUGUST 4, 2020

NSCS @cse_cst @CISAgov @FBI [link] — @U.S.CyberCommand (@US_CYBERCOM) August 3, 2020. In May, the FBI and CISA also warned cyber attacks coordinated by Beijing and attempting to steal COVID-19 information from US health care, pharmaceutical, and research industry sectors. Keep operating system patches up-to-date.

Malware 106

Malware Government Passwords System Administration 106

Security Affairs

APRIL 26, 2021

million computers worldwide that appear to have been infected with Emotet malware between April 1, 2020, and Jan. “The lengthy delay for the cleanup routine to activate may be explained by the need to give system administrators time for forensics analysis and checking for other infections.” ” stated the DoJ.

Malware 99

Malware Banking System Administration Hacking 99

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Security enthusiast and Linux evangelist Binni Shah consistently offers valuable tutorials, guides, and insights for the cybersecurity community. Eugene Kaspersky | @e_kaspersky.

Accountability 138

Accountability Cybersecurity Penetration Testing InfoSec 138

Security Affairs

JUNE 2, 2020

Researchers disclosed a flaw in VMware Cloud Director platform, tracked as CVE-2020-3956 , that could be abused to takeover corporate servers. Modify the login page to Cloud Director, which allows the attacker to capture passwords of another customer in plaintext, including System Administrator accounts.

System Administration 88

System Administration Accountability Advertising Authentication 88

SecureWorld News

OCTOBER 15, 2020

From the report: "The Twitter Hack is a cautionary tale about the extraordinary damage that can be caused even by unsophisticated cybercriminals. Strong leadership is especially needed in 2020, when the COVID-19 pandemic has created a host of new challenges for IT and cybersecurity. Between approximately 3 a.m. and 10 a.m. and 10 a.m.

Social Engineering 97

Social Engineering Media Scams Financial Services 97