2022, Accountability and System Administration

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

By 2027, 75% of employees are expected to acquire or modify technology outside of ITs control, up from 41% in 2022. Verizons Data Breach Investigations Report showed that 74% of security breaches involve a human element, with system administrators and developers accounting for most of these errors.

Cybersecurity

Cybersecurity Insurance Cyber Insurance Technology

China-linked APT group MirrorFace targets Japan

Security Affairs

JANUARY 10, 2025

MirrorFacewas first spotted by ESET in 2022, targeting Japanese political entities ahead of elections. The alert issued by Japan NPA recommends System Administrators to: Implement centralized log management to track breaches, as logs are critical for identifying causes and scope. VS Code).

Antivirus

Antivirus Malware System Administration Technology

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

SecureList

OCTOBER 13, 2022

On September 10, 2022, a user reported on Zimbra’s official forums that their team detected a security incident originating from a fully patched instance of Zimbra. In addition, manual mitigation steps can be undertaken by system administrators to prevent successful exploitation (see below). Vulnerable to CVE-2022-41352.

System Administration

System Administration Malware Passwords Government

Best Privileged Access Management (PAM) Software for 2022

eSecurity Planet

NOVEMBER 30, 2021

Privileged accounts are among an organization’s biggest cybersecurity concerns. These accounts give admins control over data, applications, infrastructure and other critical assets that average system users don’t have permission to access or change. What is Privileged Access Management (PAM)? WALLIX Bastion. PAM best practices.

Software

Software Accountability Government Passwords

FBI and CISA published a new advisory on AvosLocker ransomware

Security Affairs

OCTOBER 13, 2023

This joint CSA updates the advisory published by the US Government on March 17, 2022. AvosLocker affiliates use legitimate software and open-source remote system administration tools to compromise the victims’ networks.

Ransomware

Ransomware System Administration Antivirus Malware

Researcher compromised the Toyota Supplier Management Network

Security Affairs

FEBRUARY 8, 2023

The expert used the JWT to access the GSPIMS portal and after gaining access to the platform he discovered an account with system administrator privileges. made it easy to find accounts that had elevated access to the system. That gave me access to the User Administration section.

System Administration

System Administration Accountability Passwords Hacking

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The City of Dallas revealed that the Royal ransomware gang that hit the city system in May used a stolen account. In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. To prevent the threat from spreading within the network, the City shut down the impacted IT systems. ” reads the report.

Ransomware

Ransomware Surveillance Healthcare Accountability

Microsoft provides more mitigation instructions for the PetitPotam attack

Malwarebytes

JULY 29, 2021

The attack could force remote Windows systems to reveal password hashes that could then be easily cracked. Microsoft quickly sent out an advisory for system administrators to stop using the now deprecated Windows NT LAN Manager (NTLM) to thwart an attack. PetitPotam. ” New mitigation details.

Authentication

Authentication Passwords Encryption System Administration

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

Also read: Top Vulnerability Management Tools for 2022. Update and patch operating systems, software, and firmware as soon as updates and patches are released. Review domain controllers, servers, workstations, and active directories for new or unrecognized user accounts. Read next: Best Patch Management Software for 2022.

Ransomware

Ransomware Encryption Backups Accountability

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA observed the campaign in April 2023, the malicious e-mails with the subject “Windows Update” were crafted to appear as sent by system administrators of departments of multiple government bodies. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks.

System Administration

System Administration Government Phishing Malware

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

. “Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting.

Telecommunications

Telecommunications Authentication Passwords Accountability

New Linux Malware Shikitega Can Take Full Control of Devices

eSecurity Planet

SEPTEMBER 15, 2022

The researchers found five different scripts that aim to set four CRON jobs, which are recurrent tasks you can program on a computer system. Two of them regard the current user and the rest are for the root account. How to Protect Against Shikitega. Advanced configuration hardenings are strongly recommended.

Malware

Malware Social Engineering System Administration Antivirus

DiceyF deploys GamePlayerFramework in online casino development studio

SecureList

OCTOBER 17, 2022

The Hacktivity 2022 security festival was held at the MOM Cultural Center in Budapest, Hungary, over two days, October 6-7 th 2022. The newer (summer 2022) executables are mostly all 64-bit.NET compiled with.NET v4.5.1, Retrieves various system information, namely: Local network IP addresses. PluginDestory [sic].

Malware

Malware Encryption Social Engineering System Administration

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

Some of these attacks are challenging to detect because they look like they could be the behavior of legitimate system administrators. An attacker creates a new admin user and logs into an OpenFire account. Threat actors can use WFP to escalate their privileges on Windows. The vulnerability is still active in the wild.

VPN

VPN Authentication Firewall Mobile

Duo Has Been Recognized as a Customers’ Choice for Access Management in Gartner® Peer Insights™ Two Years in a Row!

Duo's Security Blog

MAY 6, 2022

Duo is excited to announce we have been recognized as a Customers’ Choice vendor for 2022 in the Access Management category in Gartner® Peer Insights™. This distinction is a recognition of vendors in this market based on feedback and ratings from 89 verified end users of our product as of 28th Feb 2022.

Marketing

Marketing System Administration Media Authentication

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

Some of these attacks are challenging to detect because they look like they could be the behavior of legitimate system administrators. An attacker creates a new admin user and logs into an OpenFire account. Threat actors can use WFP to escalate their privileges on Windows. The vulnerability is still active in the wild.

VPN

VPN Authentication Firewall Mobile

How to Overcome Common SSH Machine Identity Risks with Automation

Security Boulevard

JUNE 9, 2022

Thu, 06/09/2022 - 12:14. Higher levels of automation for system administrators. How to Overcome Common SSH Machine Identity Risks with Automation. brooke.crothers. Collecting Risk Intelligence. Automated policy enforcement and lifecycle management ensure orphan, duplicate or shared SSH keys can be easily decommissioned. .

Risk

Risk Digital transformation InfoSec System Administration

Updates from the MaaS: new threats delivered through NullMixer

Security Affairs

MARCH 27, 2023

The Originating Malvertising Campaign According to CTI investigation on the adversary infrastructure, we were able to identify an ongoing campaign luring system administrators to install the malicious code into their machines. The CrashedTech Loader The “KiffAppE2.exe” Filename: KiffAppE2.exe

Malware

Malware Encryption Social Engineering Marketing

The Challenges in Building Digital Trust

SecureWorld News

DECEMBER 11, 2023

Additionally, digital trust involves several interconnected elements, including: • Security of Systems and Data • Privacy of Data • Transparency of Operation • Accountability when things go wrong • Reliability But why is digital trust suddenly important? What are the origins of the need for a trust framework?

Technology

Technology Cybercrime Artificial Intelligence Government

Most Common SSH Vulnerabilities & How to Avoid Them

Security Boulevard

DECEMBER 2, 2022

Fri, 12/02/2022 - 10:55. In most organization system administrators can disable or change most or all SSH configurations; these settings and configurations can significantly increase or reduce SSH security risks. Disabling root account remote login - This prevents users from logging in as the root (super user) account.

Risk

Risk Authentication Passwords Accountability

Topic-specific policy 2/11: physical and environmental security

Notice Bored

OCTOBER 12, 2021

Yesterday I blogged about the "access control" topic-specific policy example in ISO/IEC 27002:2022. Physical security controls are clearly important for tangible information assets, including IT systems and media, documentation and people - yes, people. Today's subject is the "physical and environmental security" policy example.

Manufacturing

Manufacturing Risk System Administration Information Security

How to Improve SD-WAN Security

eSecurity Planet

MAY 19, 2022

This cloud-centric model offers administrators granular network management opportunities while leveraging the bandwidth and reducing the cost of service delivery. Experienced administrators understand the importance of inspecting all network traffic. Read more : Top Cybersecurity Startups to Watch in 2022.

Firewall

Firewall Architecture Backups Software

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

By 2027, 75% of employees are expected to acquire or modify technology outside of ITs control, up from 41% in 2022. Verizons Data Breach Investigations Report showed that 74% of security breaches involve a human element, with system administrators and developers accounting for most of these errors.

Cybersecurity

Cybersecurity Insurance Cyber Insurance Risk

RSAC insights: Software tampering escalates as bad actors take advantage of ‘dependency confusion’

The Last Watchdog

JUNE 3, 2022

Much of the discussion at RSA Conference 2022 , which convenes next week in San Francisco, will boil down to slowing attack surface expansion. Its function is to record events in a log for a system administrator to review and act upon. For a full drill down on our discussion please give the accompanying podcast a listen.

Software

Software Internet Internet System Administration

SCCM Hierarchy Takeover with High Availability

Security Boulevard

FEBRUARY 21, 2024

Abusable Requirements The first issue that raises an eyebrow is the requirement that the machine account for the passive site server must be a member of the LOCAL ADMINISTRATORS group on the active site server. Figure 2: Site Installation Account Next, we’ll shift focus to the site database role.

Authentication

Authentication Accountability System Administration Software

Cyber Security Informer

Top Cybersecurity Trends to Watch Out For in 2025

China-linked APT group MirrorFace targets Japan

Trending Sources

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

Best Privileged Access Management (PAM) Software for 2022

FBI and CISA published a new advisory on AvosLocker ransomware

Researcher compromised the Toyota Supplier Management Network

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Microsoft provides more mitigation instructions for the PetitPotam attack

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

China-linked threat actors have breached telcos and network service providers

New Linux Malware Shikitega Can Take Full Control of Devices

DiceyF deploys GamePlayerFramework in online casino development studio

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

Duo Has Been Recognized as a Customers’ Choice for Access Management in Gartner® Peer Insights™ Two Years in a Row!

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

How to Overcome Common SSH Machine Identity Risks with Automation

Updates from the MaaS: new threats delivered through NullMixer

The Challenges in Building Digital Trust

Most Common SSH Vulnerabilities & How to Avoid Them

Topic-specific policy 2/11: physical and environmental security

How to Improve SD-WAN Security

Top Cybersecurity Trends to Watch Out For in 2025

RSAC insights: Software tampering escalates as bad actors take advantage of ‘dependency confusion’

SCCM Hierarchy Takeover with High Availability

Stay Connected