Your Next Move: Systems Administrator
CompTIA on Cybersecurity
MAY 3, 2022
If you are interested in working with the day-to-day operations of computer networks, a career as a systems administrator could be your next move
System Administration Related Topics 
74 
Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’
Security Boulevard
FEBRUARY 5, 2022
The post Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’ appeared first on Security Boulevard. Permalink.
Join 5,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’
Security Boulevard
JUNE 13, 2021
The post Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’ appeared first on Security Boulevard.
How a Systems Administrator Role Preps You for a Cybersecurity Career
CompTIA on Cybersecurity
JULY 29, 2021
IT Security Specialist Jason Hernandez believes systems administration is valuable experience for IT pros – especially for those interested in cybersecurity
A Comparison Guide to Network Administrator vs. Systems Administrator Roles
USD on Cyber Security
NOVEMBER 10, 2020
Computer systems and networks. Networks and systems. It’s true that some terminology — for example, the job titles network administrator and systems administrator — are often used interchangeably. What’s the difference?
NSA shares tips on securing Windows devices with PowerShell
Bleeping Computer
JUNE 22, 2022
The National Security Agency (NSA) and cybersecurity partner agencies issued an advisory today recommending system administrators to use PowerShell to prevent and detect malicious activity on Windows machines. [.].
Why Enterprise Threat Mitigation Requires Automated, Single-Purpose Tools
The Hacker News
MARCH 14, 2022
As much as threat mitigation is to a degree a specialist task involving cybersecurity experts, the day to day of threat mitigation often still comes down to systems administrators. For systems administrators finding the time and resources to mitigate against a growing
Yandex suffers data breach after sysadmin sold access to user emails
Bleeping Computer
FEBRUARY 12, 2021
Russian internet and search company Yandex announced today that one of its system administrators had enabled unauthorized access to thousands of user mailboxes. [.].
Edward Snowden in His Own Words: Why I Became a Whistle-Blower
WIRED Threat Level
SEPTEMBER 22, 2019
Book excerpt: As a systems administrator, the young man who would expose vast, secret US surveillance saw freedom being encroached and decided he had to act. Backchannel Security
From Identification To Response: 5 Steps To IT Risk Management
SecureBlitz
FEBRUARY 28, 2022
IT risk management plans help administrators and workers identify possible risks that threaten the network and connecting systems. The administrators are responsible for managing the entire network and working with data systems administrators to protect customer and business data.
NSA shares guidance on securing voice, video communications
Bleeping Computer
JUNE 17, 2021
The National Security Agency (NSA) has shared mitigations and best practices that systems administrators should follow when securing Unified Communications (UC) and Voice and Video over IP (VVoIP) call-processing systems. [.].
Kaseya Releases Patches for Flaws Exploited in Widespread Ransomware Attack
The Hacker News
JULY 11, 2021
Florida-based software vendor Kaseya on Sunday rolled out software updates to address critical security vulnerabilities in its Virtual System Administrator (VSA) software that was used as a jumping off point to target as many as 1,500 businesses across the globe as part of a widespread supply-chain ransomware attack.
Microsoft asks admins to patch PowerShell to fix WDAC bypass
Bleeping Computer
OCTOBER 18, 2021
Microsoft has asked system administrators to patch PowerShell 7 against two vulnerabilities allowing attackers to bypass Windows Defender Application Control (WDAC) enforcements and gain access to plain text credentials. [.].
SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence
The Hacker News
APRIL 17, 2021
A high-level manager and systems administrator associated with the FIN7 threat actor has been sentenced to 10 years in prison, the U.S. Department of Justice announced Friday.
Yandex Employee Caught Selling Access to Users' Email Inboxes
The Hacker News
FEBRUARY 12, 2021
The employee was one of three system administrators with the necessary accessRussian Dutch-domiciled search engine, ride-hailing and email service provider Yandex on Friday disclosed a data breach that compromised 4,887 email accounts of its users.
Kaseya Ransomware Supply-Chain Attack: What We Know So Far
Digital Shadows
JULY 5, 2021
On 02 July 2021, details started to emerge of a sophisticated supply-chain attack targeting Kaseya VSA, virtual system administrator software. Cybercrime and Dark Web Research Cyber Threats Cybercrime Kaseya Ransomware
Indicators of Compromise (IoCs) and Their Importance in Cybersecurity
Heimadal Security
MARCH 1, 2022
When a host system or network is compromised, indicators of compromise (IoCs) are used to gather forensic evidence of the intrusion. Informatics security (InfoSec) experts and system administrators may use these traces to identify infiltration attempts and other possible harmful activities.
NSA Urges SysAdmins to Replace Obsolete TLS Protocols
Threatpost
JANUARY 6, 2021
The NSA released new guidance providing system administrators with the tools to update outdated TLS protocols. Government Vulnerabilities and Defense Industrial Base CloudFlare Department of Defense (DoD) government Heartbleed National Security System (NSS) NSA SSL TLS 1.0
Boosting Security Effectiveness with 'Adjuvants'
Dark Reading
MAY 17, 2018
How integrating corporate resources like the IT help desk, system administration, quality assurance and HR can breathe new life into your security program
Yandex security team caught admin selling access to users’ inboxes
Security Affairs
FEBRUARY 12, 2021
Russian internet and search company Yandex discloses a data breach, a system administrator was selling access to thousands of user mailboxes. The employee was one of three system administrators with the necessary access rights to provide technical support for the service.
Kaseya Starts Recovery After REvil Attack
Security Boulevard
JULY 6, 2021
Kaseya is now reporting the software-as-a-service (SaaS) instance of its Virtual System Administrator (VSA) platform will be back online sometime between 4:00 p.m.
Chinese Hackers Stole an NSA Windows Exploit in 2014
Schneier on Security
MARCH 4, 2021
Here’s the timeline : The timeline basically seems to be, according to Check Point: 2013: NSA’s Equation Group developed a set of exploits including one called EpMe that elevates one’s privileges on a vulnerable Windows system to system-administrator level, granting full control.
What Security Lessons Can Come From the Kaseya Ransomware Attack?
Security Boulevard
JULY 26, 2021
One of the latest examples in this trend is a ransomware attack on Kaseya’s Virtual System Administrator (VSA) solution for remote monitoring and management (RMM). This year will be remembered as annus horribilis for attacks against the software supply chain.
How to use Zarp for penetration testing
Tech Republic Security
JANUARY 27, 2017
Network or systems administrators must conduct pen testing to discover any possible security weaknesses. Find out why Zarp is a very powerful pen-testing tool to have at your disposal
Unified Endpoint Management Explained: (Why) Does Your Company Need One?
Heimadal Security
NOVEMBER 9, 2021
Gone are the days when a lone system administrator would perch upon the ledge of your desk to help you with menial tasks like connecting to the company’s wireless printer or installing a piece of software no one has heard about – totally understandable seeing how your average SMB has 700+ endpoints, each with its […].
Working BlueKeep Exploit Developed by DHS
Threatpost
JUNE 18, 2019
The Department of Homeland Security urged system administrators to update their Windows machines after testing a working BlueKeep exploit for Windows 2000. Hacks Vulnerabilities bluekeep Bluekeep exploit critical vulnerability DHS Exploit Microsoft WannaCry Windows 2000
What Is an Intrusion Prevention System – IPS? Definition and Benefits
Heimadal Security
JULY 21, 2021
The term IPS stands for Intrusion Prevention System and refers to a form of network security that aims to detect and prevent identified threats. An IPS system continuously monitors a network, looking for possible malicious activity and gathering information about it.
September Patch Tuesday: 66 Bulletins, Only 3 Critical
Trend Micro
SEPTEMBER 13, 2021
The September 2021 Patch Tuesday cycle is relatively good news for system administrators with only 66 total bulletins. Perhaps more significantly, only three of these were Critical bulletins.
Microsoft Patch Tuesday May 2021 fixes 55 vulnerabilities, including 3 zero-days
Security Boulevard
MAY 11, 2021
With most organizations embracing a distributed workforce these days, system administrators are bound to be up to their ears in work for the next two weeks, testing and figuring …. This month’s Patch Tuesday is here and the hustle is on.
Log4J: What You Need to Know
Adam Levin
DECEMBER 17, 2021
Unfortunately, there isn’t much that can be done by laypersons; the Log4J vulnerability needs to be addressed and patched by server and system administrators.
Google Glitch Left Passwords Unprotected for 14 Years
Adam Levin
MAY 24, 2019
Google has begun contacting system administrators whose organizations would have been affected by the glitch to encourage them to change their passwords. Google announced a glitch that stored unencrypted passwords belonging to several business customers, a situation that had been exploitable since 2005.
PyRoMine Uses NSA Exploit for Monero Mining and Backdoors
Threatpost
APRIL 26, 2018
Not just a miner, the malware also sets up a hidden default account with system administrator privileges, to be used for re-infection and further attacks. Malware backdoor EternalRomance follow on attacks Monero pyromine remote desktop ShadowBrokers smb1
Ghost Blogging Platform Hacked To Mine Cryptocurrency
Adam Levin
MAY 5, 2020
Ghost, a Singapore-based blogging platform with 2,000,000 installations and 750,000 active users, announced that hackers had breached their systems. . As of May 4, Ghost announced that it had successfully purged the cryptocurrency mining malware from its systems.
Exchange Week 2 – Ransomware Joins The Fray
Security Boulevard
MARCH 12, 2021
Following exposure and publication of a major remote execution vulnerability like Exchange’s ProxyLogon (CVE-2021-26855), we expect other threat actors to join the race against system administrators trying to patch their systems.
Meet the Administrators of the RSOCKS Proxy Botnet
Krebs on Security
JUNE 22, 2022
The RUSdot mailer, the email spamming tool made and sold by the administrator of RSOCKS. Those messages show that after being warned of his forum infraction, Stanx sent a private message to the Verified administrator detailing his cybercriminal bona fides.
September 2021 Patch Tuesday comes with fixes for 86 vulnerabilities, including two zero-days
Security Boulevard
SEPTEMBER 14, 2021
With system administrators eagerly waiting for a patch to CVE-2021-40444, this month’s Patch Tuesday comes with fixes for 86 vulnerabilities , including those previously released for Microsoft Edge, out of which three are classified as Critical and 56 as Important ….
Passwords Security: Past, Present, and Future
Security Boulevard
JULY 16, 2021
The recent report on The State Password Security in the Enterprise reveals several essential findings for system administrators and security professionals alike.
Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
Krebs on Security
JULY 8, 2021
The attackers exploited a vulnerability in software from Kaseya , a Miami-based company whose products help system administrators manage large networks remotely. “We are continuing to do forensic analysis on the system and investigating what data is actually there.”
Adconion Execs Plead Guilty in Federal Anti-Spam Case
Krebs on Security
JUNE 10, 2022
For many years, Dye was a system administrator for Optinrealbig , a Colorado company that relentlessly pimped all manner of junk email, from mortgage leads and adult-related services to counterfeit products and Viagra.
Cyber Threat warning issued to all internet connected UPS devices
CyberSecurity Insiders
APRIL 1, 2022
Therefore, system administrators are being advised to put the connected UPS devices behind a virtual private network (VPN) and use them with a multifactor authentication in place.
44 vulnerabilities, including 3 zero-days, fixed in August 2021 Patch Tuesday
Security Boulevard
AUGUST 10, 2021
After last month’s PrintNightmare vulnerability, system admins are only just catching their breaths, but this month’s Patch Tuesday is already here, so it’s back to hustling for IT teams. With most organizations embracing a distributed workforce, system administrators are bound ….
Top 8 trusted cybersecurity companies in the world
CyberSecurity Insiders
APRIL 10, 2022
As soon as the government of the United States announced a ban on Russian security software provided by Kaspersky, all the system administrators working across the world searched for the most trusted cybersecurity software companies in the world.
Latest on the SVR’s SolarWinds Hack
Schneier on Security
JANUARY 5, 2021
The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). Interviews with key players investigating what intelligence agencies believe to be an operation by Russia’s S.V.R.
Let's personalize your content