Information Security, Presentation and Systems administration

StealthWorker botnet targets Synology NAS devices to drop ransomware

Security Affairs

AUGUST 9, 2021

. “Synology PSIRT (Product Security Incident Response Team) has recently seen and received reports on an increase in brute-force attacks against Synology devices. Synology’s security researchers believe the botnet is primarily driven by a malware family called “StealthWorker.”

Ransomware

Ransomware Systems administration Authentication Security

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Danny Adamitis , principal information security researcher at Lumen and co-author of the report on AVrecon, confirmed Kilmer’s findings, saying the C2 data matched up with what Spur was seeing for SocksEscort dating back to September 2022. md , and that they were a systems administrator for sscompany[.]net.

Analytics

Analytics Passwords Systems administration Retail

Caketap, a new Unix rootkit used to siphon ATM banking data

Security Affairs

MARCH 18, 2022

In order to identify CAKETAP running on a Solaris system, administrators can check for the presence of a hook installed in the ipcl_get_next_conn hook function. The actor uses their skill and experience to take full advantage of the decreased visibility and security measures that are often present in Unix and Linux environments.

Systems administration

Systems administration Security IT Access

Microsoft’s Patch Tuesday updates for March 2020 fix 115 issues

Security Affairs

MARCH 11, 2020

“The attacker could present to the user a removable drive, or remote share, that contains a malicious.LNK file and an associated malicious binary,” reads the advisory published by Microsoft. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Systems administration

Systems administration Security IT Information Security

Georgia Governor Vetoes Broad-Reaching Computer Crime Bill, Highlighting Debate Around Bug Bounty Programs

Data Matters

MAY 17, 2018

SB 315 faced opposition from both private companies and information security researchers. Organizations have employed bug bounty programs in an effort to encourage researchers to report security flaws in their systems. The incident and Uber’s response prompted the U.S.

Systems administration

Systems administration Cybersecurity Information Security Insurance

How to start your career in cyber security

IT Governance

FEBRUARY 25, 2019

Technically, you don’t need any cyber security experience to get started, though many people entering the field will come from jobs that have similar skillsets, such as systems administration or information analysis. You should also get to know the cyber security professionals in your organisation.

Security

Security Systems administration Information Security Government

Backdoored Webmin versions were available for download for over a year

Security Affairs

AUGUST 19, 2019

Webmin is an open-source web-based interface for system administration for Linux and Unix. I'ill share detailed information about my presentation and vulnerabilities very soon! Webmin, the popular open-source web-based interface for Unix admin contained a remote code execution vulnerability for more than a year.

Passwords

Passwords Systems administration Authentication Security

Stealing computing power: A growing trend in cyber crime that can target all Internet-connected devices

CGI

JULY 5, 2018

Using another organization’s computer capacity might seem harmless, but the decreased power (as much as 65%) slows down workstations and systems, and quickly can cause significant losses. This is why I advise both system administrators and users to pay attention actively to the processing power of their environment.

Mining

Mining Blockchain Systems administration Risk

What Is an Insider Threat? Definition, Types, and Examples

IT Governance

APRIL 25, 2023

A malicious threat can be an employee, contractor or business partner who is liable to leak sensitive information. Preventing this from happening requires a nuanced approach to information security, and it’s one that organisations are increasingly struggling with. Examples of insider threats 1.

Data breaches

Data breaches Phishing Personal data Access

US authorities charged Dridex gang members for stealing over $100 Million

Security Affairs

DECEMBER 7, 2019

. “Bugat malware was allegedly designed to automate the theft of confidential personal and financial information, such as online banking credentials, and facilitated the theft of confidential personal and financial information by a number of methods.

Systems administration

Systems administration Ransomware IT Security

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

KnowBe4

MARCH 14, 2023

According to the report, vulnerabilities are alive and well in modern attacks: 81 vulnerabilities exist that provide attackers with end-to-end access – from initial access to exfiltration – have been identified within popular operating systems, databases, storage, virtualization and firewall solutions.

Phishing

Phishing Security Artificial Intelligence Security awareness

How To Build A Cybersecurity Career | What Really Matters

Cyber Info Veritas

JULY 3, 2018

Unfortunately, and this very fact is very alarming, even though cyber security and IT management in general are some of the fastest-growing and well-paying fields, they are not attracting the talent they need primarily because most graduates do not want to go into employment; they want to create the next Facebook, Snapchat, Twitter, or Microsoft.

Cybersecurity

Cybersecurity Computer and Electronics Education Information Security

Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)

Security Affairs

OCTOBER 3, 2023

Our investigation revealed that this remote endpoint is associated with criminal activities dating back to 2019, indicating that these hosts were likely under the control of the same technical administration. Example of a LockBit victim showing the “WIN-LIVFRVQFMKO” hostname.

Ransomware

Ransomware Systems administration IT Access

Updates from the MaaS: new threats delivered through NullMixer

Security Affairs

MARCH 27, 2023

The Originating Malvertising Campaign According to CTI investigation on the adversary infrastructure, we were able to identify an ongoing campaign luring system administrators to install the malicious code into their machines.

Encryption

Encryption Communications IoT Marketing

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Security Affairs

APRIL 30, 2020

One of the defining signatures of PerSwaysion is that it spreads like wildfire jumping from one victim to another while no malware is present on a user device during the attack. However, this is a specially crafted presentation page which abuses Sway default borderless view. PerSwaysion is a highly-targeted phishing campaign.

Phishing

Phishing Financial Services Cloud Authentication

Information Management Today

StealthWorker botnet targets Synology NAS devices to drop ransomware

Who and What is Behind the Malware Proxy Service SocksEscort?

Trending Sources

Caketap, a new Unix rootkit used to siphon ATM banking data

Microsoft’s Patch Tuesday updates for March 2020 fix 115 issues

Georgia Governor Vetoes Broad-Reaching Computer Crime Bill, Highlighting Debate Around Bug Bounty Programs

How to start your career in cyber security

Backdoored Webmin versions were available for download for over a year

Stealing computing power: A growing trend in cyber crime that can target all Internet-connected devices

What Is an Insider Threat? Definition, Types, and Examples

US authorities charged Dridex gang members for stealing over $100 Million

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

How To Build A Cybersecurity Career | What Really Matters

Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)

Updates from the MaaS: new threats delivered through NullMixer

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Stay Connected