SecureList

APRIL 29, 2025

Analysis We started the analysis by gathering relevant evidence from a compromised Linux system. We identified an odd authorized SSH key for a user called suporte (in a Portuguese-speaking environment, this is an account typically used for administrative tasks in the operating system). configrc5 / a directory.

Passwords 100

Passwords Authentication System Administration Malware 100

The Last Watchdog

JUNE 2, 2021

The amount of data in the world topped an astounding 59 zetabytes in 2020, much of it pooling in data lakes. We’ve barely scratched the surface of applying artificial intelligence and advanced data analytics to the raw data collecting in these gargantuan cloud-storage structures erected by Amazon, Microsoft and Google.

Encryption 176

Encryption Artificial Intelligence IoT Data collection 176

SecureList

OCTOBER 12, 2023

Once it has gained a foothold, it starts to collect information about the hosts connected to the same network to find targets that might have files of interest.

Encryption 140

Encryption Passwords Malware Firewall 140

Security Boulevard

MAY 21, 2024

On Detection: Tactical to Functional Part 12 Introduction At Shmoocon 2015, Will Schroeder (Harmj0y) gave a talk titled “ I Hunt Sys Admins ,” describing how attackers can hunt (or find the location of) system administrators throughout the network. As described in his talk, account takeover is not limited to Mimikatz.

Computers and Electronics 59

Computers and Electronics Engineering Accountability System Administration 59