2013 and System Administration - Cyber Security Informer

Chinese Hackers Stole an NSA Windows Exploit in 2014

Schneier on Security

MARCH 4, 2021

Here’s the timeline : The timeline basically seems to be, according to Check Point: 2013: NSA’s Equation Group developed a set of exploits including one called EpMe that elevates one’s privileges on a vulnerable Windows system to system-administrator level, granting full control.

System Administration

System Administration Government Hacking

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Security Affairs

FEBRUARY 19, 2025

Introduced in December 2014 (OpenSSH 6.8p1), this flaw remained active, with FreeBSD enabling VerifyHostKeyDNS by default from 2013 to 2023, increasing exposure. “SSH is a critical service for remote system administration. ” continues the report.

Authentication

Authentication System Administration DNS Hacking

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

Stanx said he was a longtime member of several major forums, including the Russian hacker forum Antichat (since 2005), and the Russian crime forum Exploit (since April 2013). Kloster says he’s worked in many large companies in Omsk as a system administrator, web developer and photographer.

Advertising

Advertising Cybercrime System Administration Hacking

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security

JUNE 10, 2022

In 2019, AFRINIC fired a top employee after it emerged that in 2013 he quietly commandeered millions of IPs from defunct African entities or from those that were long ago acquired by other firms, and then conspired to sell an estimated $50 million worth of the IPs to marketers based outside Africa.

Government

Government Marketing Internet Internet

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Krebs on Security

NOVEMBER 8, 2021

Prosecutors say Vasinskyi was involved in a number of REvil ransomware attacks, including the July 2021 attack against Kaseya , Miami-based company whose products help system administrators manage large networks remotely. Prosecutors say Vasinskyi also used the monikers “ Yarik45 ,” and “ Yaroslav2468.”

Ransomware

Ransomware Cybercrime System Administration Passwords

Thangrycat: A Serious Cisco Vulnerability

Schneier on Security

MAY 23, 2019

First commercially introduced in 2013, Cisco Trust Anchor module (TAm) is a proprietary hardware security module used in a wide range of Cisco products, including enterprise routers, switches and firewalls. Many systems don't even have administrative access configured correctly.

System Administration

System Administration Software Firewall Engineering

Microsoft Patch Tuesday, February 2022 Edition

Krebs on Security

FEBRUARY 8, 2022

Among those is CVE-2022-22005 , a weakness in Microsoft’s Sharepoint Server versions 2013-2019 that could be exploited by any authenticated user. The change will also be enabled for all currently supported standalone versions of Office, including versions 2021, 2019, 2016, and 2013.

Authentication

Authentication Internet Internet System Administration

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

2011 said he was a system administrator and C++ coder. ” In April 2013, NeroWolfe wrote in a private message to another Verified forum user that he was selling a malware “loader” program that could bypass all of the security protections on Windows XP and Windows 7. “P.S. . “P.S.

Ransomware

Ransomware Cybercrime Accountability Malware

A member of the FIN7 group was sentenced to 10 years in prison

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration

System Administration Penetration Testing Malware Hacking

A Closer Look at the Snatch Data Ransom Group

Krebs on Security

SEPTEMBER 30, 2023

“The command requires Windows system administrators,” Truniger’s ads explained. “I’ve been using this login since about 2013 on all the forums where I register, and I don’t always set a strong password. “Experience in backup, increase privileges, mikicatz, network.

Ransomware

Ransomware Accountability Cybercrime Backups

FIN7 sysadmin behind “billions in damage” gets 10 years

Malwarebytes

APRIL 20, 2021

Hladyr is the systems administrator for the FIN7 hacking group, and is considered the mastermind behind the Carbanak campaign , a series of cyberattacks said to stolen as much as $900 million from banks in early part of the last decade. The malware. According to acting US Attorney Tessa M.

System Administration

System Administration Banking Malware Penetration Testing

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Hladyr is suspected to be a system administrator for the group.

Malware

Malware Penetration Testing Banking System Administration

Kimsuky APT poses as journalists and broadcast writers in its attacks

Security Affairs

JUNE 3, 2023

Kimsuky cyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. Additionally, the APT group also impersonates operators or administrators of popular web portals claiming that a victim’s account has been locked following suspicious activity or fraudulent use.

Social Engineering

Social Engineering Phishing System Administration Engineering

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Hladyr is suspected to be a system administrator for the group.

Malware

Malware Penetration Testing Banking System Administration

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

A few days later, IT systems started malfunctioning with ransom messages following. The system administrator did not configure standard security controls when installing the server in question. Meanwhile, the suspect server was connected to the CDOT domain with an administrator account and the internet.

VPN

VPN Software Authentication Encryption

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

Wednesday 13th, March 2013, 10 years ago, Kali Linux v1.0 A fresh start in March 2013. BackTrack Linux became Kali Linux in March 2013. Moto) first saw the light of day at Black Hat Europe 2013 and was based on Debian 7. Being a system administrator, a patch could contain a security update to stop a vulnerability.

InfoSec

InfoSec Penetration Testing Architecture Software

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Krebs on Security

SEPTEMBER 2, 2019

For many years, Dye was a system administrator for Optinrealbig , a Colorado company that relentlessly pimped all manner of junk email, from mortgage leads and adult-related services to counterfeit products and Viagra. .” ” ONE OF THE LARGEST SPAMMERS IN HISTORY?

Media

Media Government Marketing Internet

Ransomware Gangs and the Name Game Distraction

Krebs on Security

AUGUST 5, 2021

REvil’s last big victim was Kaseya , a Miami-based company whose products help system administrators manage large networks remotely. Throughout 2013 and 2014, PCs infected with Gameover were seeded with Cryptolocker , an early, much-copied ransomware strain allegedly authored by Bogachev himself.

Ransomware

Ransomware Cybercrime Malware System Administration

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Tabriz has led Google Chrome’s security since 2013, which extends to managing Product, Engineering, and UX today. Denial-of-Suez attack. Jack Daniel | @jack_daniel. Parisa Tabriz | @laparisa.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Detecting browser data theft using Windows Event Logs

Google Security

APRIL 30, 2024

Where it is not possible to prevent the theft of credentials and cookies by malware, the next best thing is making the attack more observable by antivirus, endpoint detection agents, or enterprise administrators with basic log analysis tools.

Passwords

Passwords Malware Encryption System Administration

Cyber Security Informer

Chinese Hackers Stole an NSA Windows Exploit in 2014

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Trending Sources

Meet the Administrators of the RSOCKS Proxy Botnet

Adconion Execs Plead Guilty in Federal Anti-Spam Case

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Thangrycat: A Serious Cisco Vulnerability

Microsoft Patch Tuesday, February 2022 Edition

How Did Authorities Identify the Alleged Lockbit Boss?

A member of the FIN7 group was sentenced to 10 years in prison

A Closer Look at the Snatch Data Ransom Group

FIN7 sysadmin behind “billions in damage” gets 10 years

FireEye experts found source code for CARBANAK malware on VirusTotal?

Kimsuky APT poses as journalists and broadcast writers in its attacks

FireEye experts found source code for CARBANAK malware on VirusTotal?

Addressing Remote Desktop Attacks and Security

Happy 10th anniversary & Kali's story.so far

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Ransomware Gangs and the Name Game Distraction

Top Cybersecurity Accounts to Follow on Twitter

Detecting browser data theft using Windows Event Logs

Stay Connected