Cybersecurity, Information Security and System Administration

Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’

Security Boulevard

FEBRUARY 5, 2022

The post Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’ appeared first on Security Boulevard.

Penetration Testing

Penetration Testing System Administration Education InfoSec

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. How to Choose a Security Certification. Thycotic chief security scientist Joseph Carson told eSecurity Planet that choosing a certification should ultimately be about deciding which skillset or professional direction you want to focus on.

Cybersecurity

Cybersecurity Penetration Testing System Administration Cyber Attacks

FBI and CISA published a new advisory on AvosLocker ransomware

Security Affairs

OCTOBER 13, 2023

FBI and CISA published a joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with AvosLocker ransomware. The joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort aimed at sharing technical details associated with various ransomware operations.

Ransomware

Ransomware System Administration Antivirus Malware

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Top IT Areas You Need to Check to Strengthen Your Cybersecurity

CyberSecurity Insiders

SEPTEMBER 24, 2021

Even with high-level security measures, no one is safe from such threats. That is why most companies hire professional information security services to mitigate the risks arising from data breaches. One of the most vulnerable areas that hackers use to infiltrate a company’s system is the network. Data Security.

Cybersecurity

Cybersecurity Data breaches Backups Firewall

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

There are new and expanding opportunities for women’s participation in cybersecurity globally as women are present in greater numbers in leadership. This is consistent with new research from Boardroom Insiders which states that 20 percent of Fortune 500 global chief information officers (CIOs) are now women — the largest percentage ever.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

Security Affairs

OCTOBER 22, 2021

FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting a pentest. The gang space creates fake cybersecurity companies that hire experts requesting them to carry out pen testing attacks under the guise of pentesting activities. Pierluigi Paganini.

Cybercrime

Cybercrime Ransomware Cybersecurity Backups

How to Write Spotless Job Description to Attract Cybersecurity Pros to Your Business

CyberSecurity Insiders

FEBRUARY 9, 2021

Whether you specialize in SaaS, outsource your services or operate as a physical goods trader in the B2B sector, the risk of cybersecurity intrusions prevails. According to CNBC , 43% of cybersecurity attacks are aimed at small businesses, however, only 14% are prepared to defend themselves. Open with a Description of your Company.

B2B

B2B Cybersecurity Education Small Business

University of Phoenix Recognized With 2021 Academic Circle of Excellence Award by EC-Council, World’s Largest Cybersecurity Certification Body

CyberSecurity Insiders

DECEMBER 17, 2021

The EC-Council Academic division awards formally highlight academic institutions and faculty within North America and across the world that excel each year with lasting impacts on their students’ cybersecurity education and local communities. dean, College of Business and Information Technology at the University.

Cybersecurity

Cybersecurity Education Technology System Administration

Russia-linked hackers actively exploit CVE-2020-4006 VMware flaw, NSA warns

Security Affairs

DECEMBER 7, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) also published a security advisory on the CVE-2020-4006 zero-day flaw. ” According to the NSA, the threat actors installed a web shell on the VMWare Workspace ONE system and then forged SAML credentials for themselves. .” ” Pierluigi Paganini.

System Administration

System Administration Authentication Hacking Cybersecurity

Real Talk with CCSPs: An Interview with Panagiotis Soulos

CyberSecurity Insiders

MARCH 22, 2023

With these words Panagiotis Soulos summarizes his philosophy of why the CCSP credential is important to any cybersecurity professional. Panagiotis holds the position of the Global Information Security Manager in Global Information Security at Intrum. Let me give you a little of information about Intrum.

Cybersecurity

Cybersecurity Education Information Security Marketing

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA observed the campaign in April 2023, the malicious e-mails with the subject “Windows Update” were crafted to appear as sent by system administrators of departments of multiple government bodies. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks.

System Administration

System Administration Government Phishing Malware

Red Team vs Blue Team vs Purple Team: Differences Explained

eSecurity Planet

FEBRUARY 21, 2023

Red, blue and purple teams simulate cyberattacks and incident responses to test an organization’s cybersecurity readiness. Blue team members might be led by a chief information security officer (CISO) or director of security operations, making this team the largest among the three.

Social Engineering

Social Engineering Penetration Testing Engineering Risk

Hacker breaches key Russian ministry in blink of an eye

Security Affairs

MARCH 16, 2022

In mere seconds, a hacker remotely accessed a computer belonging to a regional Russian Ministry of Health, taking advantage of sloppy cybersecurity practices to expose its entire network. Spielerkid89, who wished to remain anonymous, did not intend to harm the organization and left its systems intact. Original post at [link].

Authentication

Authentication Cyber Attacks System Administration Internet

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Security Affairs

SEPTEMBER 27, 2023

US and Japanese intelligence, law enforcement and cybersecurity agencies warn of a China-linked APT, tracked as BlackTech (aka Palmerworm, Temp.Overboard, Circuit Panda, and Radio Panda), that planted backdoor in Cisco router firmware to access multinational companies’ networks. Federal Bureau of Investigation (FBI), the U.S.

Firmware

Firmware Telecommunications System Administration Malware

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

Cybersecurity firm Constella Intelligence shows that in 2017, someone using the email address istanx@gmail.com registered at the Russian freelancer job site fl.ru Kloster says he’s worked in many large companies in Omsk as a system administrator, web developer and photographer. ” the post enthuses.

Advertising

Advertising Cybercrime System Administration Hacking

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The City experts believe that the group specifically targeted a prioritized list of servers using legitimate Microsoft system administrative tools. The City immediately initiated mitigation efforts after the discovery of the attack and it started restoring its services with the help of external cybersecurity experts.

Ransomware

Ransomware Surveillance Healthcare Accountability

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

Security Affairs

DECEMBER 30, 2021

The module has full access to all the firmware, hardware, software, and operating system installed on the server. . The attacks were spotted by Iranian cybersecurity firm Amnpardaz, this is the first time ever that malware targets iLO firmware. The level of sophistication of these attacks suggests the involvement of an APT group.

Firmware

Firmware Malware System Administration Technology

Yandex sysadmin caught selling access to email accounts

Malwarebytes

FEBRUARY 17, 2021

Yandex, a European multinational technology firm best known for being the most-used search engine in Russia, has revealed it had a security breach, leading to the compromise of almost 5,000 Yandex email accounts. The company says it spotted the breach after a routine check by its security team.

Accountability

Accountability Social Engineering System Administration Engineering

Hackers are targeting Soliton FileZen file-sharing servers

Security Affairs

APRIL 25, 2021

The vendor recommended changing system administrator account, reset access control, and installing the latest available version. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Follow me on Twitter: @securityaffairs and Facebook.

System Administration

System Administration Firmware Government Hacking

Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs

Security Affairs

FEBRUARY 2, 2021

The news of the attack was also confirmed by the popular cybersecurity researchers Kevin Beaumont that reported that threat actors are using the two issues to bypass all Windows OS security, by shutting down VMs and encrypting the VMDK’s directly on hypervisor. Threat actors left the ransom note at the datastore level.

Encryption

Encryption Ransomware System Administration Hacking

More ‘actionable’ intel needed from HHS to support health IT security

SC Magazine

JUNE 29, 2021

The Department of Health and Human Services has made progress in threat sharing efforts to support cybersecurity within its partnerships and the health care sector. But the Government Accountability Office found areas where HHS could better coordinate its efforts to support department information sharing and overall health IT security.

Healthcare

Healthcare Cybersecurity CISO Cyber threats

BatLoader campaign impersonates ChatGPT and Midjourney to deliver Redline Stealer

Security Affairs

MAY 21, 2023

Unfortunately, as system administrators seek ways to control access to these platforms, users may seek out alternative ways to gain access.” In this case, the visitors were downloading Midjourney-x64.msix, msix, which is a Windows Application Package also signed by ASHANA GLOBAL LTD. ” concludes the report.

System Administration

System Administration Advertising Malware Hacking

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

The FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense (DoD) released information on a RAT variant, dubbed TAIDOOR, used by China-linked hackers in cyber espionage campaigns targeting governments, corporations, and think tanks. Keep operating system patches up-to-date.

Malware

Malware Government Passwords System Administration

North Korea-linked Lazarus APT targets the IT supply chain

Security Affairs

OCTOBER 27, 2021

Cybersecurity and Infrastructure Security Agency (CISA) in August 2020. The CISA MAR provided indicators of compromise (IoCs), Yara rules, and other technical info that could be used by system administrators to discover compromise systems within their networks. ” reads the report published by Kaspersky.

Malware

Malware System Administration Hacking Media

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

US NSA, CISA, and the FBI published a joint cybersecurity advisory to warn that China-linked threat actors have breached telecommunications companies and network service providers. Ensure that you have dedicated management systems [ D3-PH ] and accounts for system administrators.

Telecommunications

Telecommunications Authentication Passwords Accountability

Threat actors are attempting to exploit recently fixed F5 BIG-IP flaw

Security Affairs

JULY 6, 2020

link] — USCYBERCOM Cybersecurity Alert (@CNMF_CyberAlert) July 3, 2020. Researchers Rich Warren from NCC Group told ZDNet that hackers are attempting to exploit the flaw to steal administrator passwords from the hacked devices. System administrators need to upgrade to fixed versions ASAP. Remediate immediately.

System Administration

System Administration Advertising Hacking Banking

How to secure QNAP NAS devices? The vendor’s instructions

Security Affairs

JANUARY 7, 2022

.” Customers can check whether their NAS is exposed online by using the Security Counselor, a built-in security portal for QNAP NAS devices. Administrator of devices exposed to the Internet should: Disable the Port Forwarding function of the router.

Internet

Internet Internet Ransomware Encryption

CISA’s MAR warns of North Korean BLINDINGCAN RAT

Security Affairs

AUGUST 19, 2020

The US Cybersecurity and Infrastructure Security Agency (CISA) has published a Malware Analysis Report (MAR) that includes technical details about a new strain of malware, tracked as BLINDINGCAN, that was attributed to North Korea. In April, the U.S.

Malware

Malware Cyber threats Government System Administration

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Fifteen years after the launch of the microblogging social media platform, Twitter remains a dominant public forum for instant communication with individuals and organizations worldwide on a universe of topics, including #cybersecurity. Top Cybersecurity Experts to Follow on Twitter. Binni Shah | @binitamshah. Eva Galperi n | @evacide.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Security Affairs

MAY 2, 2021

Organizations with effective spam filtering, proper system administration and up-to-date Windows hosts have a much lower risk of infection.” ” If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Follow me on Twitter: @securityaffairs and Facebook.

Cryptocurrency

Cryptocurrency Malware Advertising System Administration

Experts spotted Syslogk, a Linux rootkit under development

Security Affairs

JUNE 14, 2022

This is why it is essential for system administrators and security companies to be aware of this kind of malware and write protections for their users as soon as possible.” ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Malware

Malware System Administration Antivirus Architecture

Experts found critical authentication bypass flaw in HPE Edgeline Infrastructure Manager

Security Affairs

MAY 5, 2021

SSH stands for Secure Shell or Secure Socket Shell and is a network protocol that is most often used by system administrators for remote command-line requests, system logins and also for remote command execution. This allows the attacker to SSH to the EIM host as root.”.

Authentication

Authentication Passwords Accountability System Administration

CIA elite hacking unit was not able to protect its tools and cyber weapons

Security Affairs

JUNE 17, 2020

The CIA report highlighted the lax cybersecurity measures by the CIA’s Center for Cyber Intelligence, a super-sophisticated hackers unit. ” continues the report “While CIA was an early leader in securing our enterprise information technology (IT) system, we failed to correct acute vulnerabilities to our mission IT systems.”.

Hacking

Hacking Engineering Data breaches Advertising

Bye Bye Emotet, law enforcement pushed the uninstall code via the botnet

Security Affairs

APRIL 26, 2021

“The lengthy delay for the cleanup routine to activate may be explained by the need to give system administrators time for forensics analysis and checking for other infections.” ” If you want to receive the weekly Security Affairs Newsletter for free subscribe here. concludes MalwareBytes.

Malware

Malware Banking System Administration Hacking

Top 10 web application vulnerabilities in 2021–2023

SecureList

MARCH 12, 2024

Recommendations provided in these rankings are general in nature and based on information security best practices standards and guidelines, such as OWASP and NIST. The rankings are expert opinions based on the number of applications containing a specific vulnerability and the severity of the impact.

Passwords

Passwords Authentication Architecture Risk

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

In this article we will learn how to address and effectively respond to major enterprise cybersecurity threats and provide tips to mitigate IT security risk. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Privileged account management challenges: comparing PIM, PUM and PAM

CyberSecurity Insiders

NOVEMBER 18, 2021

Obviously, when using an infrastructure that includes different networks with different user directories and different security policies, it is tough to comply with all information security requirements. The concept of PIM, in contrast to PAM, is aimed at managing existing accounts: administrator, root, etc. Conclusion.

Accountability

Accountability Passwords Authentication Social Engineering

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Security Affairs

JUNE 2, 2020

Escalate privileges from “Organization Administrator” (normally a customer account) to “System Administrator” with access to all cloud accounts (organization) as an attacker can change the hash for this account. SecurityAffairs – VMware Cloud Director, cybersecurity). Pierluigi Paganini.

System Administration

System Administration Accountability Advertising Authentication

Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)

Security Affairs

OCTOBER 3, 2023

Our investigation revealed that this remote endpoint is associated with criminal activities dating back to 2019, indicating that these hosts were likely under the control of the same technical administration. This hostname connection is particularly heterogeneous, but it technically makes sense.

Scams

Scams Ransomware System Administration Malware

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

The Last Watchdog

NOVEMBER 28, 2018

Michigan is cultivating a collection of amazing cybersecurity training facilities, called Cyber Range hubs, that are shining models for what’s possible when inspired program leaders are given access to leading-edge resources, wisely supplied by public agencies and private foundations. Merit 1981. So we did some research.

Cybersecurity

Cybersecurity System Administration Manufacturing Education

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Security Affairs

APRIL 30, 2020

Group-IB, a Singapore-based cybersecurity company , has identified a series of sophisticated successful phishing attacks against the management and executives of more than 150 companies around the world. Please give me your vote for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link].

Phishing

Phishing Accountability Financial Services Cloud Migration

New York: Cyberattack Is Twitter's Fault, Let's Increase Regulation

SecureWorld News

OCTOBER 15, 2020

And also reached three significant conclusions, which you can summarize like this: Twitter is to blame for the cyberattack's success, because of inadequate cybersecurity going all the way to the top. New York should increase cybersecurity regulations as a result, especially for social media companies.

Social Engineering

Social Engineering Media Scams Financial Services

Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’

15 Top Cybersecurity Certifications for 2022

Webinars

Trending Sources

FBI and CISA published a new advisory on AvosLocker ransomware

Webinars

Top IT Areas You Need to Check to Strengthen Your Cybersecurity

SPOTLIGHT: Women in Cybersecurity

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

How to Write Spotless Job Description to Attract Cybersecurity Pros to Your Business

University of Phoenix Recognized With 2021 Academic Circle of Excellence Award by EC-Council, World’s Largest Cybersecurity Certification Body

Russia-linked hackers actively exploit CVE-2020-4006 VMware flaw, NSA warns

Real Talk with CCSPs: An Interview with Panagiotis Soulos

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Red Team vs Blue Team vs Purple Team: Differences Explained

Hacker breaches key Russian ministry in blink of an eye

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Meet the Administrators of the RSOCKS Proxy Botnet

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

Yandex sysadmin caught selling access to email accounts

Hackers are targeting Soliton FileZen file-sharing servers

Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs

More ‘actionable’ intel needed from HHS to support health IT security

BatLoader campaign impersonates ChatGPT and Midjourney to deliver Redline Stealer

US govt agencies share details of the China-linked espionage malware Taidoor

North Korea-linked Lazarus APT targets the IT supply chain

China-linked threat actors have breached telcos and network service providers

Threat actors are attempting to exploit recently fixed F5 BIG-IP flaw

How to secure QNAP NAS devices? The vendor’s instructions

CISA’s MAR warns of North Korean BLINDINGCAN RAT

Top Cybersecurity Accounts to Follow on Twitter

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Experts spotted Syslogk, a Linux rootkit under development

Experts found critical authentication bypass flaw in HPE Edgeline Infrastructure Manager

CIA elite hacking unit was not able to protect its tools and cyber weapons

Bye Bye Emotet, law enforcement pushed the uninstall code via the botnet

Top 10 web application vulnerabilities in 2021–2023

Cyber Security Awareness and Risk Management

Privileged account management challenges: comparing PIM, PUM and PAM

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

New York: Cyberattack Is Twitter's Fault, Let's Increase Regulation

Stay Connected