eSecurity Planet

MARCH 21, 2022

Using misconfigured multi-factor authentication (MFA) and an unpatched Windows vulnerability, Russian state-sponsored hackers were able to breach a non-governmental organization (NGO) and escalate privileges, the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI revealed last week. Implement network segmentation.

VPN 117

VPN Accountability Authentication Passwords 117

eSecurity Planet

FEBRUARY 15, 2022

The agencies offered some sound cybersecurity advice for BlackByte that applies pretty generally: Conduct regular backups and store them as air-gapped, password-protected copies offline. Update and patch operating systems, software, and firmware as soon as updates and patches are released. 7 SP1, 8, 8.1)

Ransomware 128

Ransomware Encryption Backups Accountability 128

eSecurity Planet

MAY 27, 2024

GitHub Enterprise Server and GitLab patched their authentication bypass and XSS issues. Immediately update your QNAP devices to the most recent firmware to mitigate these issues. Vulnerability in Fluent Bit Exposes Systems to DoS Type of vulnerability: Memory corruption vulnerability. 3.11.10, 3.10.12, and 3.9.15.

Backups 67

Backups Authentication DDOS Engineering 67