2016, Accountability and System Administration

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Back in 2016, the primary focus of our expert was on major cybergangs that targeted financial institutions, banks in particular. It could be compromised directly or by hacking the account of someone with access to the website management. This browser attack chain, popular in 2016, is no longer possible.

Cybercrime

Cybercrime Banking Malware Ransomware

DDoS Mitigation Firm Founder Admits to DDoS

Krebs on Security

JANUARY 20, 2020

Preston was featured in the 2016 KrebsOnSecurity story DDoS Mitigation Firm Has History of Hijacks , which detailed how the company he co-founded — BackConnect Security LLC — had developed the unusual habit of hijacking Internet address space it didn’t own in a bid to protect clients from attacks.

DDOS

DDOS Internet Internet System Administration

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

According to Constella, this email address was used in 2010 to register an account for a Dmitry Yurievich Khoroshev from Voronezh, Russia at the hosting provider firstvds.ru. 2011 said he was a system administrator and C++ coder. NeroWolfe seems to have abandoned all of his forum accounts sometime in 2016.

Ransomware

Ransomware Cybercrime Accountability Malware

Microsoft to notify Office 365 users of nation-state attacks

Security Affairs

FEBRUARY 8, 2021

Since 2016 , Microsoft has been alerting users of nation-state activity, now the IT giant added the same service to the Defender for Office 365 dashboard. The alerts are also sent to system administrators and security teams, who can directly contact the affected employees and take action to prevent their accounts take over.

System Administration

System Administration Hacking Cyber threats Accountability

Critical Microsoft Windows Vulnerability found

CyberSecurity Insiders

JULY 7, 2021

Or else they are on the verge of getting hacked by cyber crooks that could then install programs, view or delete data or even create new user accounts of a PC without the knowledge of the user or the system administration if/when on network. .

System Administration

System Administration Cyber Attacks Engineering Accountability

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

The group was involved also in the string of attacks that targeted 2016 Presidential election. CERT-UA observed the campaign in April 2023, the malicious e-mails with the subject “Windows Update” were crafted to appear as sent by system administrators of departments of multiple government bodies.

System Administration

System Administration Government Phishing Malware

‘Wormable’ Flaw Leads July Microsoft Patches

Krebs on Security

JULY 14, 2020

. “DNS is a foundational networking component and commonly installed on Domain Controllers, so a compromise could lead to significant service interruptions and the compromise of high level domain accounts.” Before you update with this month’s patch batch, please make sure you have backed up your system and/or important files.

DNS

DNS Backups Software System Administration

Caketap, a new Unix rootkit used to siphon ATM banking data

Security Affairs

MARCH 18, 2022

The China-linked hacking group has been active since at least 2016, according to the CrowdStrike researchers it is using a very sophisticated toolset. In order to identify CAKETAP running on a Solaris system, administrators can check for the presence of a hook installed in the ipcl_get_next_conn hook function.

Banking

Banking Telecommunications System Administration Hacking

Microsoft provides more mitigation instructions for the PetitPotam attack

Malwarebytes

JULY 29, 2021

The attack could force remote Windows systems to reveal password hashes that could then be easily cracked. Microsoft quickly sent out an advisory for system administrators to stop using the now deprecated Windows NT LAN Manager (NTLM) to thwart an attack. Vulnerable systems. PetitPotam. ” New mitigation details.

Authentication

Authentication Passwords Encryption System Administration

Cybersecurity agencies: You don’t have to delete PowerShell to secure it

Malwarebytes

JUNE 24, 2022

Although it’s closely associated with the world of Windows administration, PowerShell is a cross-platform (Windows, Linux, and macOS) automation and configuration tool which, by design, is optimized for dealing with structured data.

Cybersecurity

Cybersecurity Malware Firewall System Administration

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

Update and patch operating systems, software, and firmware as soon as updates and patches are released. Review domain controllers, servers, workstations, and active directories for new or unrecognized user accounts. Federal organizations will only have until February 24, 2022 to patch this vulnerability. How to Use the CISA Catalog.

Ransomware

Ransomware Encryption Backups Accountability

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

Between 2016 and 2018, the malware strain SamSam made brute force RDP attacks an integral part of its attacks on several public organizations. By exploiting weak server vulnerabilities, the Iran-based hackers were able to gain access, move laterally, encrypt IT systems, and demand ransom payment.

VPN

VPN Software Authentication Encryption

PrintNightmare 0-day can be used to take over Windows domain controllers

Malwarebytes

JULY 1, 2021

#PrintNightmare / CVE-2021-1675 – It appears patches might be effective on systems that are not domain controllers. RpcAddPrinterDriverEx call as non-admin fails with access denied against fully patched Server 2016 and 2019 non-DC, but after dcpromo the exploit works again.

System Administration

System Administration Backups Marketing Engineering

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Kennedy founded cybersecurity-focused TrustedSec and Binary Defense Systems and co-authored Metasploit: The Penetration Tester’s Guide. Denial-of-Suez attack.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

The Phight Against Phishing

Digital Shadows

AUGUST 17, 2021

Going back a bit, it was also the top attack vector in 2020, 2019, 2018, 2017, 2016, and well, hopefully, you get the picture. The targeted phishing is going after folks in HR using fake but malicious resumes or payroll and accounts receivable teams to move legitimate payment accounts into attacker control.

Phishing

Phishing Accountability Social Engineering Mobile

Only now we known that International Civil Aviation Organization (ICAO) was hacked in 2016

Security Affairs

MARCH 1, 2019

Canadian media revealed that in November 2016, the International Civil Aviation Organization (ICAO) was a hit by a large-scale cyberattack. According to an investigation conducted by Secureworks hackers were also able to access the hackers were also able to compromise the mail servers to obtain access to admin accounts.

Hacking

Hacking Advertising System Administration Media

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. In the event of the Ransomware assault, the G Suite administrator will receive a notification about the incident either via e-mail or by Slack.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

The Hacker Mind Podcast: Ethical Hacking

ForAllSecure

MAY 26, 2022

And, you know, I had the Twitter account ID set up in 2018. I had tweeted this video, it's pinned on our Twitter account hack, not crime. I've often advised people to pursue that path that really get a solid foundation on the legacy technology or legacy concepts of coding, networking and system administration type stuff.

Hacking

Hacking Technology InfoSec Media

Cyber Security Informer

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

DDoS Mitigation Firm Founder Admits to DDoS

Trending Sources

How Did Authorities Identify the Alleged Lockbit Boss?

Microsoft to notify Office 365 users of nation-state attacks

Critical Microsoft Windows Vulnerability found

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

‘Wormable’ Flaw Leads July Microsoft Patches

Caketap, a new Unix rootkit used to siphon ATM banking data

Microsoft provides more mitigation instructions for the PetitPotam attack

Cybersecurity agencies: You don’t have to delete PowerShell to secure it

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

Addressing Remote Desktop Attacks and Security

PrintNightmare 0-day can be used to take over Windows domain controllers

Top Cybersecurity Accounts to Follow on Twitter

The Phight Against Phishing

Only now we known that International Civil Aviation Organization (ICAO) was hacked in 2016

Cyber Security Awareness and Risk Management

The Hacker Mind Podcast: Ethical Hacking

Stay Connected