2014, Authentication and System Administration

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Security Affairs

FEBRUARY 19, 2025

The second vulnerability, tracked CVE-2025-26466 (CVSS score: 5.9), affects both the OpenSSH client and server, allowing a pre-authentication denial-of-service attack. Introduced in December 2014 (OpenSSH 6.8p1), this flaw remained active, with FreeBSD enabling VerifyHostKeyDNS by default from 2013 to 2023, increasing exposure.

Authentication

Authentication System Administration DNS Hacking

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Security Affairs

JUNE 2, 2020

The vulnerability could potentially allow an authenticated attacker to gain access to corporate network, access to sensitive data, and control private clouds within an entire infrastructure. “An authenticated actor may be able to send malicious traffic to VMware Cloud Director which may lead to arbitrary remote code execution.

System Administration

System Administration Accountability Advertising Passwords

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

A baseboard management controller (BMC) is a specialized service processor that monitors the physical state of a computer, network server or other hardware device using sensors and communicating with the system administrator through an independent connection. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Firmware Media Authentication

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Security Affairs

SEPTEMBER 2, 2019

System administrators need to employ security best practices with the systems they manage.” Str ong passw ords, a vulnerability remediation plan, and two factors of authentication can go a long way to keep systems secure from the most basic and common attacks.” ” Cashdollar concludes.

IoT

IoT Cryptocurrency Malware Advertising

Thousands of RDM refrigeration systems exposed online are at risk

Security Affairs

FEBRUARY 10, 2019

In many cases, the web interface can be accessed without authentication. “They all come with a default username and “1234” as the default password, which is rarely changed by system administrators.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Risk

Risk Passwords Advertising System Administration

Backdoored Webmin versions were available for download for over a year

Security Affairs

AUGUST 19, 2019

Webmin is an open-source web-based interface for system administration for Linux and Unix. To exploit the malicious code, your Webmin installation must have Webmin -> Webmin Configuration -> Authentication -> Password expiry policy set to Prompt users with expired passwords to enter a new one. Pierluigi Paganini.

Passwords

Passwords System Administration Advertising DNS

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Security Affairs

OCTOBER 17, 2018

In this type of distributed denial of service (DDoS) attack, the malicious traffic generated with the technique is greater than the once associated with the use of memcached, a service that does not require authentication but has been exposed on the internet by inexperienced system administrators. Brasília time, 1:00 p.m.

DDOS

DDOS Internet Internet Advertising

Crooks continue to abuse exposed Docker APIs for Cryptojacking

Security Affairs

OCTOBER 28, 2018

The Center for Internet Security (CIS) has a reference that can help system administrators and security teams establish a benchmark to secure their Docker engine. Ensure that container images are authenticated, signed, and from a trusted registry (i.e., Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Engineering

Engineering Cryptocurrency Advertising System Administration

Experts discovered a severe command injection flaw in Cisco Webex Meetings Desktop

Security Affairs

OCTOBER 25, 2018

The vulnerability could be exploited by an authenticated, local attacker to execute arbitrary commands as a privileged user. ” Cisco advisory reveals that the vulnerability could be exploited remotely by leveraging the operating system remote management tools. when running on a Microsoft Windows end-user system.

Advertising

Advertising System Administration Hacking Software

Initial patch for Webex Meetings flaw WebExec was incomplete. Cisco fixed it again

Security Affairs

NOVEMBER 28, 2018

The CVE-2018-15442 vulnerability could be exploited by an authenticated, local attacker to execute arbitrary commands as a privileged user. Cisco advisory reveals that the vulnerability could be also exploited remotely by leveraging the operating system remote management tools. when running on a Microsoft Windows end-user system.

Advertising

Advertising System Administration Software Authentication

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Security Affairs

APRIL 30, 2020

The threat actors leverage perfectly orchestrated social engineering technique by “persuading” people holding significant corporate positions to open a non-malicious PDF email attachment coming from an authentic address in their contacts. The page resembles an authentic Microsoft Office 365 file sharing page. Pierluigi Paganini.

Phishing

Phishing Accountability Financial Services Cloud Migration

Stolen Nvidia certificates used to sign malware—here’s what to do

Malwarebytes

MARCH 15, 2022

A code signing certificate is used to authenticate the identity of a software developer or publisher, and it provides cryptographic assurance that a signed piece of software has not been altered or tampered with. The two leaked Nvidia certificates have expired, being valid from 2011 to 2014 and 2015 to 2018.

Malware

Malware Software System Administration Ransomware

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

Audit user accounts with administrative privileges and configure access controls with least privilege in mind, and use multifactor authentication. CVE-2015-1130 : An XPC implementation allows authentication bypass and admin privilege escalation in Apple OS X before 10.10.3. 7 SP1, 8, 8.1) How to Use the CISA Catalog.

Ransomware

Ransomware Encryption Backups Accountability

10 Unbelievable Ways the CIA Is Failing at Cybersecurity

SecureWorld News

JUNE 18, 2020

Shared passwords and a failure to control access: "Most of our sensitive cyber weapons were not compartmented, users shared systems administrator-level passwords.". Part of the blame for the CIA operating its cybersecurity (or lack thereof) in the shadows falls on Congress and can be traced back to 2014.

Cybersecurity

Cybersecurity Authentication Government System Administration

Most Common SSH Vulnerabilities & How to Avoid Them

Security Boulevard

DECEMBER 2, 2022

In most organization system administrators can disable or change most or all SSH configurations; these settings and configurations can significantly increase or reduce SSH security risks. There are also security risks connected with “host keys,” which are the other authentication method used to identify the Secure Shell server.

Risk

Risk Passwords Authentication Accountability

IT threat evolution Q2 2021

SecureList

AUGUST 12, 2021

It is complex multi-stage banking malware, which was initially discovered by Doctor Web in 2014. Most of the commands are used to display fake pop-up messages and seek to trick people into entering two-factor authentication codes. Notify your supervisors as soon as possible.

Ransomware

Ransomware Malware Banking Encryption

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

The CISA agency provides recommendations for system administrators and owners to enhance the level of security of their organizations: Maintain up-to-date antivirus signatures and engines. Keep operating system patches up-to-date. If these services are required, use strong passwords or Active Directory authentication.

Malware

Malware Government Passwords Advertising

GAO Report shed the lights on the failures behind the Equifax hack

Security Affairs

SEPTEMBER 10, 2018

“In July 2017, Equifax system administrators discovered that attackers had gained. Digital certificates are encrypted electronic tokens that are used to authenticate servers and systems. Because this one was expired, the system was unable to inspect encrypted traffic. The network. Pierluigi Paganini.

Hacking

Hacking Encryption Advertising Government

Cyber Security Informer

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Critical flaw in VMware Cloud Director allows hackers to take over company infrastructure

Trending Sources

USBAnywhere BMC flaws expose Supermicro servers to hack

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Thousands of RDM refrigeration systems exposed online are at risk

Backdoored Webmin versions were available for download for over a year

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Crooks continue to abuse exposed Docker APIs for Cryptojacking

Experts discovered a severe command injection flaw in Cisco Webex Meetings Desktop

Initial patch for Webex Meetings flaw WebExec was incomplete. Cisco fixed it again

Group-IB uncovers PerSwaysion – sophisticated phishing campaign targeting executives worldwide

Stolen Nvidia certificates used to sign malware—here’s what to do

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

10 Unbelievable Ways the CIA Is Failing at Cybersecurity

Most Common SSH Vulnerabilities & How to Avoid Them

IT threat evolution Q2 2021

US govt agencies share details of the China-linked espionage malware Taidoor

GAO Report shed the lights on the failures behind the Equifax hack

Stay Connected