Cybersecurity, IT and Systems administration - Information Management Today

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. Also read: How to Get Started in a Cybersecurity Career. The Top Cybersecurity Certifications. With that advice in mind, here are 15 cybersecurity certifications particularly worth considering. How to Choose a Security Certification.

Cybersecurity

Cybersecurity Systems administration Information Security Compliance

FBI and CISA published a new advisory on AvosLocker ransomware

Security Affairs

OCTOBER 13, 2023

FBI and CISA published a joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with AvosLocker ransomware. The joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort aimed at sharing technical details associated with various ransomware operations.

Ransomware

Ransomware Systems administration Cybersecurity Encryption

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

Security Affairs

OCTOBER 22, 2021

FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting a pentest. The gang space creates fake cybersecurity companies that hire experts requesting them to carry out pen testing attacks under the guise of pentesting activities.

Ransomware

Ransomware Cybersecurity Systems administration Access

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

North Korea-linked Lazarus APT targets the IT supply chain

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Cybersecurity and Infrastructure Security Agency (CISA) in August 2020. ” reads the report published by Kaspersky.

IT

IT Systems administration Military Cybersecurity

Automated Patch Management: Definition, Tools & How It Works

eSecurity Planet

APRIL 28, 2023

How Automated Patch Management Works Patch management is one of the most important aspects of cybersecurity. Software updates are critical for keeping a system’s integrity and security intact. That’s where automated patch management comes in by determining what needs patching and then applying those patches.

IT

IT Compliance Risk Security

VulnRecap 2/26/24 – VMWare, Apple, ScreenConnect Face Risks

eSecurity Planet

FEBRUARY 26, 2024

Urgent patching and prompt updates can protect systems from unauthorized access, data breaches, and potential exploitation by threat actors. To secure sensitive data, cybersecurity specialists, software vendors, and end users should encourage collaborative efforts against malicious activities.

Risk

Risk Authentication Systems administration Ransomware

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Security Affairs

SEPTEMBER 27, 2023

US and Japanese intelligence, law enforcement and cybersecurity agencies warn of a China-linked APT, tracked as BlackTech (aka Palmerworm, Temp.Overboard, Circuit Panda, and Radio Panda), that planted backdoor in Cisco router firmware to access multinational companies’ networks. Federal Bureau of Investigation (FBI), the U.S.

Cybersecurity

Cybersecurity Systems administration Access Government

Black Hat insights: Getting bombarded by multiple ransomware attacks has become commonplace

The Last Watchdog

AUGUST 15, 2022

I had the chance to discuss these findings last week at Black Hat USA 2022, with John Shier, senior security advisor at Sophos, a next-generation cybersecurity leader with a broad portfolio of managed services, software and hardware offerings. Configure system administrative tools more wisely. Shier is spot on.

Ransomware

Ransomware Systems administration Encryption Paper

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The City of Dallas revealed that the Royal ransomware gang that hit the city system in May used a stolen account. In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. To prevent the threat from spreading within the network, the City shut down the impacted IT systems. ” reads the report.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

Q&A: How certifying in-house IT staffers as cyber analysts, pen testers can boost SMB security

The Last Watchdog

NOVEMBER 12, 2018

Related: The ‘gamification’ of cybersecurity training. Stanger: We typically go in and talk to companies about guiding them down a whole cybersecurity pathway. Or in another instance a company might have an IT staffer who is in a position to undergo training to take the CompTIA Cybersecurity Analyst (CySA+) exam.

IT

IT Security Cybersecurity Privacy

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA observed the campaign in April 2023, the malicious e-mails with the subject “Windows Update” were crafted to appear as sent by system administrators of departments of multiple government bodies. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Systems administration

Systems administration Military Phishing Government

CIA elite hacking unit was not able to protect its tools and cyber weapons

Security Affairs

JUNE 17, 2020

The CIA report highlighted the lax cybersecurity measures by the CIA’s Center for Cyber Intelligence, a super-sophisticated hackers unit. ” continues the report “While CIA was an early leader in securing our enterprise information technology (IT) system, we failed to correct acute vulnerabilities to our mission IT systems.”.

IT

IT Data breaches Systems administration Passwords

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Krebs on Security

JUNE 9, 2020

based cybersecurity firm Hold Security , KrebsOnSecurity contacted the office of Florence’s mayor to alert them that a Windows 10 system in their IT environment had been commandeered by a ransomware gang. Nestled in the northwest corner of Alabama, Florence is home to roughly 40,000 residents. Image: Florenceal.org.

Ransomware

Ransomware Systems administration Cybersecurity Personal data

Russia-linked hackers actively exploit CVE-2020-4006 VMware flaw, NSA warns

Security Affairs

DECEMBER 7, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) also published a security advisory on the CVE-2020-4006 zero-day flaw. ” According to the NSA, the threat actors installed a web shell on the VMWare Workspace ONE system and then forged SAML credentials for themselves. .” ” concludes the advisory.

Systems administration

Systems administration Access Cybersecurity Authentication

Red Team vs Blue Team vs Purple Team: Differences Explained

eSecurity Planet

FEBRUARY 21, 2023

Red, blue and purple teams simulate cyberattacks and incident responses to test an organization’s cybersecurity readiness. Blue teams consist of security analysts, network engineers and system administrators. The red team literally tests the effectiveness of the organization’s defensive measures — often without warning.

Cybersecurity

Cybersecurity Risk Phishing Systems administration

How Microsoft Training Boosts an ISO 27001 Qualification

IT Governance

FEBRUARY 17, 2022

Meanwhile, the (ISC) 2 Cybersecurity Workforce Study 202 1 found that 72% of cyber security professionals are required by their organisation to earn certifications. There’s a huge demand for qualified administrators and cyber security professionals. Most organisations that use Cloud services do so with Microsoft Azure. Getting started.

Cloud

Cloud Systems administration Information Security Security

Log4J: What You Need to Know

Adam Levin

DECEMBER 17, 2021

The timing of the discovery of the vulnerability also works against organizations; many IT teams and cybersecurity personnel who would typically be working to apply patches and mitigate would-be cyberthreats often work with skeleton crews over the holiday season. Here’s a quick breakdown of what it means for internet users. What is Log4J?

Systems administration

Systems administration Cybersecurity Manufacturing Libraries

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

Security Affairs

DECEMBER 30, 2021

The attacks were spotted by Iranian cybersecurity firm Amnpardaz, this is the first time ever that malware targets iLO firmware. ” Experts concluded that the attackers could infect iLO both through the network and through the host operating system. ” reads the report published by the expers. ” continues the report.

Systems administration

Systems administration Access Cybersecurity Security

Career Choice Tip: Cybercrime is Mostly Boring

Krebs on Security

MAY 29, 2020

The researchers concluded that for many people involved, cybercrime amounts to little more than a boring office job sustaining the infrastructure on which these global markets rely, work that is little different in character from the activity of legitimate system administrators. So I just left and went on with life.

Systems administration

Systems administration Marketing Paper Risk

Hacker breaches key Russian ministry in blink of an eye

Security Affairs

MARCH 16, 2022

In mere seconds, a hacker remotely accessed a computer belonging to a regional Russian Ministry of Health, taking advantage of sloppy cybersecurity practices to expose its entire network. Spielerkid89, who wished to remain anonymous, did not intend to harm the organization and left its systems intact. Original post at [link].

Authentication

Authentication Access Systems administration Military

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

The Last Watchdog

MARCH 29, 2022

By no means has the cybersecurity community been blind to the complex security challenges spinning out of digital transformation. I’ve recently had several deep-dive discussions with cybersecurity experts at Juniper Networks, about this. Log4j bathes light on a couple of solidifying developments. The Sunnyvale, Calif.-based

Security

Security Cloud Digital transformation Cybersecurity

Laying the foundation for cybersecurity

CGI

MAY 21, 2018

Laying the foundation for cybersecurity. A system administrator did not apply a patch. The basic tenets of securing systems and data still apply. Cybersecurity is a daily challenge, not a task you can finish—but failing to approach it systematically is a risk no organization can afford to take. premanath.puch….

Cybersecurity

Cybersecurity Systems administration Risk Encryption

Build your Microsoft Security career

IT Governance

SEPTEMBER 22, 2021

Cybersecurity Workforce Study 2020 ?found?that It’s also suitable for those who plan to develop a specialised career as a Microsoft Azure administrator or security engineer. . Potential job roles include IT support executive, IT support manager, system administrator and Microsoft 365 security administrator. .

Security

Security Systems administration Cloud Government

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

The RUSdot mailer, the email spamming tool made and sold by the administrator of RSOCKS. Cybersecurity firm Constella Intelligence shows that in 2017, someone using the email address istanx@gmail.com registered at the Russian freelancer job site fl.ru Authorities in the United States, Germany, the Netherlands and the U.K.

Sales

Sales Access Systems administration Marketing

Ransomware – Stop’em Before They Wreak Havoc

Thales Cloud Protection & Licensing

MAY 17, 2023

Cybersecurity Ventures predicts by 2031 ransomware will cost victims $265 billion annually, and it will affect a business, consumer, or device every 2 seconds. It gives administrators a choice of alerting and/or blocking file access before ransomware can take hold of your endpoints/servers. What is Ransomware?

Ransomware

Ransomware Encryption Authentication Access

RSAC insights: Software tampering escalates as bad actors take advantage of ‘dependency confusion’

The Last Watchdog

JUNE 3, 2022

Its function is to record events in a log for a system administrator to review and act upon. President Biden’s cybersecurity executive order, issued in May, includes a detailed SBOM requirement for all software delivered to the federal government. This is because such a high premium is put on agility. Implementing SBOM.

Systems administration

Systems administration Libraries Risk Authentication

Black Hat AI Tools Fuel Rise in Business Email Compromise (BEC) Attacks

eSecurity Planet

JULY 13, 2023

Such a never-ending hunt for exploits could leave system administrators with little to no time to fix vulnerabilities and keep their systems secure, leaving a wide range of systems vulnerable to exploitation, causing widespread and significant damage. ” “The results were unsettling,” Kelley wrote.

Phishing

Phishing Systems administration Cybersecurity Marketing

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

In fact, memory attacks have quietly emerged as a powerful and versatile new class of hacking technique that threat actors in the vanguard are utilizing to subvert conventional IT security systems. That’s Gartner’s estimate of global spending on cybersecurity in 2017 and 2018. Instead, memory attacks are transient. Back to incursions.

Energy and Utilities

Energy and Utilities Systems administration Access Cybersecurity

Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs

Security Affairs

FEBRUARY 2, 2021

The news of the attack was also confirmed by the popular cybersecurity researchers Kevin Beaumont that reported that threat actors are using the two issues to bypass all Windows OS security, by shutting down VMs and encrypting the VMDK’s directly on hypervisor. Threat actors left the ransom note at the datastore level.

Encryption

Encryption Ransomware Systems administration Cybersecurity

How To Build A Cybersecurity Career | What Really Matters

Cyber Info Veritas

JULY 3, 2018

The lack of qualified cybersecurity professionals is one of the main reasons why we are yet unable to get a handle on cybercrimes. By having more cybersecurity professionals, we can enhance security. Compounding this is the fact that most cybersecurity graduates are millennials who want to create something of their own.

Cybersecurity

Cybersecurity Computer and Electronics Education Information Security

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

The FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense (DoD) released information on a RAT variant, dubbed TAIDOOR, used by China-linked hackers in cyber espionage campaigns targeting governments, corporations, and think tanks. Keep operating system patches up-to-date. v1 , U.S. .

Healthcare

Healthcare Passwords Government Systems administration

MY TAKE: How SMBs can improve security via ‘privileged access management’ (PAM) basics

The Last Watchdog

APRIL 6, 2021

As digital transformation kicks into high gear, it’s certainly not getting any easier to operate IT systems securely, especially for small- and medium-sized businesses. There are a lot of moving parts to modern IT systems. This could be because of confusing cybersecurity marketing messages, Côté says.

Access

Access Security Passwords Authentication

A Closer Look at the Snatch Data Ransom Group

Krebs on Security

SEPTEMBER 30, 2023

Cybersecurity and Infrastructure Security Administratio n (CISA), Snatch was originally named Team Truniger , based on the nickname of the group’s founder and organizer — Truniger. . It continues: “Prior to deploying the ransomware, Snatch threat actors were observed spending up to three months on a victim’s system.

Ransomware

Ransomware Data breaches Encryption Systems administration

Fake Company Sheds Light on Ransomware Group Tactics

eSecurity Planet

NOVEMBER 4, 2021

One example was uncovered last month by researchers from Gemini Advisory, who revealed that FIN7 had created a sham cybersecurity company called “Bastion Secure” to lure security experts. FIN7’s hackers built a website based on legitimate information provided by actual cybersecurity companies. FIN7 Dupes Security Job Applicants.

Ransomware

Ransomware Systems administration Cybersecurity Phishing

BatLoader campaign impersonates ChatGPT and Midjourney to deliver Redline Stealer

Security Affairs

MAY 21, 2023

Unfortunately, as system administrators seek ways to control access to these platforms, users may seek out alternative ways to gain access.” In this case, the visitors were downloading Midjourney-x64.msix, msix, which is a Windows Application Package also signed by ASHANA GLOBAL LTD. ” concludes the report.

Systems administration

Systems administration Access Cybersecurity Security

NEW TECH: LogicHub introduces ‘virtualized’ security analysts to help elevate SOAR

The Last Watchdog

SEPTEMBER 11, 2019

One of the promising cybersecurity trends that I’ve been keeping an eye on is this: SOAR continues to steadily mature. Security orchestration, automation and response, or SOAR, is a fledgling security technology stack that first entered the cybersecurity lexicon about six years ago. Just ask Capital One , Marriott or Equifax.

Security

Security Big data Cybersecurity Analytics

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

Some of these attacks are challenging to detect because they look like they could be the behavior of legitimate system administrators. Attackers use Sentry’s System Manager Portal to configure Sentry and its operating system, potentially executing operating system commands on the appliance as root, according to Ivanti.

Authentication

Authentication Ransomware Passwords Cybersecurity

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

US NSA, CISA, and the FBI published a joint cybersecurity advisory to warn that China-linked threat actors have breached telecommunications companies and network service providers. Ensure that you have dedicated management systems [ D3-PH ] and accounts for system administrators.

Authentication

Authentication Passwords Systems administration Manufacturing

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

cybersecurity agencies, which highlighted the threats in a pair of warnings issued in recent days. And the Cybersecurity and Infrastructure Security Agency (CISA) added 15 more vulnerabilities to its list of actively exploited vulnerabilities. cybersecurity advisories in recent weeks. The FBI and U.S. 7 SP1, 8, 8.1)

Ransomware

Ransomware Encryption Agriculture Cybersecurity

GUEST ESSAY: How stealth, persistence allowed Wipro attacker to plunder supply chain

The Last Watchdog

MAY 10, 2019

Related: Marriott suffers massive breach We now know, thanks to reporting from cybersecurity blogger Brian Krebs, that the Wipro hack was a multi-month intrusion and likely the work of a nation-state backed threat actor. Wipro did not provide many additional details.

Digital transformation

Digital transformation Systems administration Phishing Ransomware

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

The Last Watchdog

JUNE 23, 2021

Leading-edge cybersecurity systems in service today apply machine learning in some amazing ways to help large enterprises identify and instantly respond to cyber threats. And it doesn’t take enterprise-grade security systems to accomplish this. However, this is overkill for many, if not most, SMBs. Remote desktop risks.

Security

Security Passwords Cloud Access

Can smart cities be secured and trusted?

Thales Cloud Protection & Licensing

OCTOBER 15, 2019

There’s just one problem…these massive, radical, interconnected technology systems also raise serious privacy and security concerns. In June 2019, Riviera Beach in FL paid $600,000 to hackers to restore its email system and public records. The surge in attacks makes clear that many cities are unprepared for cybersecurity threats.

Security

Security Encryption Systems administration Access

Experts spotted Syslogk, a Linux rootkit under development

Security Affairs

JUNE 14, 2022

Linux rootkits are malware installed as kernel modules in the operating system. Syslogk is also able to hide the malicious payload by taking the following actions: The hk_proc_readdir function of the rootkit hides directories containing malicious files, effectively hiding them from the operating system. ” continues the analysis.

Systems administration

Systems administration Authentication IT Security

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

eSecurity Planet

AUGUST 28, 2023

Some of these attacks are challenging to detect because they look like they could be the behavior of legitimate system administrators. Attackers use Sentry’s System Manager Portal to configure Sentry and its operating system, potentially executing operating system commands on the appliance as root, according to Ivanti.

Authentication

Authentication Ransomware Passwords Cybersecurity

15 Top Cybersecurity Certifications for 2022

FBI and CISA published a new advisory on AvosLocker ransomware

Webinars

Trending Sources

FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks

Webinars

North Korea-linked Lazarus APT targets the IT supply chain

Automated Patch Management: Definition, Tools & How It Works

VulnRecap 2/26/24 – VMWare, Apple, ScreenConnect Face Risks

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Black Hat insights: Getting bombarded by multiple ransomware attacks has become commonplace

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Q&A: How certifying in-house IT staffers as cyber analysts, pen testers can boost SMB security

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

CIA elite hacking unit was not able to protect its tools and cyber weapons

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Russia-linked hackers actively exploit CVE-2020-4006 VMware flaw, NSA warns

Red Team vs Blue Team vs Purple Team: Differences Explained

How Microsoft Training Boosts an ISO 27001 Qualification

Log4J: What You Need to Know

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

Career Choice Tip: Cybercrime is Mostly Boring

Hacker breaches key Russian ministry in blink of an eye

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

Laying the foundation for cybersecurity

Build your Microsoft Security career

Meet the Administrators of the RSOCKS Proxy Botnet

Ransomware – Stop’em Before They Wreak Havoc

RSAC insights: Software tampering escalates as bad actors take advantage of ‘dependency confusion’

Black Hat AI Tools Fuel Rise in Business Email Compromise (BEC) Attacks

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs

How To Build A Cybersecurity Career | What Really Matters

US govt agencies share details of the China-linked espionage malware Taidoor

MY TAKE: How SMBs can improve security via ‘privileged access management’ (PAM) basics

A Closer Look at the Snatch Data Ransom Group

Fake Company Sheds Light on Ransomware Group Tactics

BatLoader campaign impersonates ChatGPT and Midjourney to deliver Redline Stealer

NEW TECH: LogicHub introduces ‘virtualized’ security analysts to help elevate SOAR

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

China-linked threat actors have breached telcos and network service providers

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

GUEST ESSAY: How stealth, persistence allowed Wipro attacker to plunder supply chain

MY TAKE: A path for SMBs to achieve security maturity: start small controlling privileged accounts

Can smart cities be secured and trusted?

Experts spotted Syslogk, a Linux rootkit under development

Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws

Stay Connected