2013 and System Administration - Cyber Security Informer

Chinese Hackers Stole an NSA Windows Exploit in 2014

Schneier on Security

MARCH 4, 2021

Here’s the timeline : The timeline basically seems to be, according to Check Point: 2013: NSA’s Equation Group developed a set of exploits including one called EpMe that elevates one’s privileges on a vulnerable Windows system to system-administrator level, granting full control.

System Administration

System Administration Government Hacking

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

Stanx said he was a longtime member of several major forums, including the Russian hacker forum Antichat (since 2005), and the Russian crime forum Exploit (since April 2013). Kloster says he’s worked in many large companies in Omsk as a system administrator, web developer and photographer.

Advertising

Advertising Cybercrime System Administration Hacking

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security

JUNE 10, 2022

In 2019, AFRINIC fired a top employee after it emerged that in 2013 he quietly commandeered millions of IPs from defunct African entities or from those that were long ago acquired by other firms, and then conspired to sell an estimated $50 million worth of the IPs to marketers based outside Africa.

Government

Government Marketing Internet Internet

Microsoft Patch Tuesday, February 2022 Edition

Krebs on Security

FEBRUARY 8, 2022

Among those is CVE-2022-22005 , a weakness in Microsoft’s Sharepoint Server versions 2013-2019 that could be exploited by any authenticated user. The change will also be enabled for all currently supported standalone versions of Office, including versions 2021, 2019, 2016, and 2013.

Authentication

Authentication Internet Internet System Administration

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Krebs on Security

NOVEMBER 8, 2021

Prosecutors say Vasinskyi was involved in a number of REvil ransomware attacks, including the July 2021 attack against Kaseya , Miami-based company whose products help system administrators manage large networks remotely. Prosecutors say Vasinskyi also used the monikers “ Yarik45 ,” and “ Yaroslav2468.”

Ransomware

Ransomware Cybercrime System Administration Passwords

Thangrycat: A Serious Cisco Vulnerability

Schneier on Security

MAY 23, 2019

First commercially introduced in 2013, Cisco Trust Anchor module (TAm) is a proprietary hardware security module used in a wide range of Cisco products, including enterprise routers, switches and firewalls. Many systems don't even have administrative access configured correctly.

System Administration

System Administration Software Firewall Engineering

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

2011 said he was a system administrator and C++ coder. ” In April 2013, NeroWolfe wrote in a private message to another Verified forum user that he was selling a malware “loader” program that could bypass all of the security protections on Windows XP and Windows 7. “P.S. . “P.S.

Ransomware

Ransomware Cybercrime Accountability Malware

A member of the FIN7 group was sentenced to 10 years in prison

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration

System Administration Penetration Testing Malware Hacking

Kimsuky APT poses as journalists and broadcast writers in its attacks

Security Affairs

JUNE 3, 2023

Kimsuky cyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. Additionally, the APT group also impersonates operators or administrators of popular web portals claiming that a victim’s account has been locked following suspicious activity or fraudulent use.

Social Engineering

Social Engineering Phishing System Administration Engineering

FIN7 sysadmin behind “billions in damage” gets 10 years

Malwarebytes

APRIL 20, 2021

Hladyr is the systems administrator for the FIN7 hacking group, and is considered the mastermind behind the Carbanak campaign , a series of cyberattacks said to stolen as much as $900 million from banks in early part of the last decade. The malware. According to acting US Attorney Tessa M.

System Administration

System Administration Banking Malware Penetration Testing

A Closer Look at the Snatch Data Ransom Group

Krebs on Security

SEPTEMBER 30, 2023

“The command requires Windows system administrators,” Truniger’s ads explained. “I’ve been using this login since about 2013 on all the forums where I register, and I don’t always set a strong password. “Experience in backup, increase privileges, mikicatz, network.

Ransomware

Ransomware Accountability Cybercrime Backups

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Hladyr is suspected to be a system administrator for the group.

Malware

Malware Penetration Testing Banking System Administration

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Hladyr is suspected to be a system administrator for the group.

Malware

Malware Penetration Testing Banking System Administration

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

A few days later, IT systems started malfunctioning with ransom messages following. The system administrator did not configure standard security controls when installing the server in question. Meanwhile, the suspect server was connected to the CDOT domain with an administrator account and the internet.

VPN

VPN Software Authentication Encryption

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

Wednesday 13th, March 2013, 10 years ago, Kali Linux v1.0 A fresh start in March 2013. BackTrack Linux became Kali Linux in March 2013. Moto) first saw the light of day at Black Hat Europe 2013 and was based on Debian 7. Being a system administrator, a patch could contain a security update to stop a vulnerability.

InfoSec

InfoSec Penetration Testing Architecture Software

Ransomware Gangs and the Name Game Distraction

Krebs on Security

AUGUST 5, 2021

REvil’s last big victim was Kaseya , a Miami-based company whose products help system administrators manage large networks remotely. Throughout 2013 and 2014, PCs infected with Gameover were seeded with Cryptolocker , an early, much-copied ransomware strain allegedly authored by Bogachev himself.

Ransomware

Ransomware Cybercrime Malware System Administration

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Krebs on Security

SEPTEMBER 2, 2019

For many years, Dye was a system administrator for Optinrealbig , a Colorado company that relentlessly pimped all manner of junk email, from mortgage leads and adult-related services to counterfeit products and Viagra. .” ” ONE OF THE LARGEST SPAMMERS IN HISTORY?

Media

Media Government Marketing Internet

Detecting browser data theft using Windows Event Logs

Google Security

APRIL 30, 2024

Where it is not possible to prevent the theft of credentials and cookies by malware, the next best thing is making the attack more observable by antivirus, endpoint detection agents, or enterprise administrators with basic log analysis tools.

Passwords

Passwords Malware Encryption System Administration

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Tabriz has led Google Chrome’s security since 2013, which extends to managing Product, Engineering, and UX today. Denial-of-Suez attack. Jack Daniel | @jack_daniel. Parisa Tabriz | @laparisa.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cyber Security Informer

Chinese Hackers Stole an NSA Windows Exploit in 2014

Meet the Administrators of the RSOCKS Proxy Botnet

Trending Sources

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Microsoft Patch Tuesday, February 2022 Edition

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Thangrycat: A Serious Cisco Vulnerability

How Did Authorities Identify the Alleged Lockbit Boss?

A member of the FIN7 group was sentenced to 10 years in prison

Kimsuky APT poses as journalists and broadcast writers in its attacks

FIN7 sysadmin behind “billions in damage” gets 10 years

A Closer Look at the Snatch Data Ransom Group

FireEye experts found source code for CARBANAK malware on VirusTotal?

FireEye experts found source code for CARBANAK malware on VirusTotal?

Addressing Remote Desktop Attacks and Security

Happy 10th anniversary & Kali's story.so far

Ransomware Gangs and the Name Game Distraction

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Detecting browser data theft using Windows Event Logs

Top Cybersecurity Accounts to Follow on Twitter

Stay Connected