eSecurity Planet

MARCH 21, 2022

Using misconfigured multi-factor authentication (MFA) and an unpatched Windows vulnerability, Russian state-sponsored hackers were able to breach a non-governmental organization (NGO) and escalate privileges, the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI revealed last week. Network Best Practices.

VPN 108

VPN Accountability Authentication Passwords 108

SC Magazine

JULY 7, 2021

flaw, which is caused by improper authentication. Further, the Redis server operates on a remote host but is not protected by password authentication. If remote access is required to the vulnerable Vue PACS, secure methods should be required to do so, such as a virtual private network (VPN).

VPN 121

VPN Software System Administration Authentication 121

SecureList

NOVEMBER 14, 2022

Okta was breached through one of its service providers, Sitel, itself compromised via the insecure VPN gateway of a recently acquired company. Okta is a widely used authentication services provider, and it is safe to assume that a hacker controlling their network would be able to infect any of their customers. The next WannaCry.

Firmware 106

Firmware Surveillance Mobile Telecommunications 106