brute force | Orthology.eu

Pieter Arntz January 14, 2021

Cybercriminals want your cloud services accounts, CISA warns

On January 13 the Cybersecurity and Infrastructure Security Agency (CISA) issued a warning about several recent successful cyberattacks on various organizations’ cloud services. What methods did the attackers use? In the initial phase, the victims were targeted by phishing emails trying to capture the credentials of a cloud service account. Once the attackers had stolen a set of valid … [Read more...]

Filed Under: Awareness, bec, brute force, CISA, Cloud services, IOCs, mfa, pass-the-cookie, phishing, rdp, vpn, WFH

Malwarebytes Labs December 21, 2020

A week in security (December 14 – December 20)

Last week on Malwarebytes Labs we kept you updated on the SolarWinds attack, we warned about the special dangers that come with the Christmas season, published a threat profile for the Egregor ransomware, warned how a lead generation scam was targeting potential Malwarebytes MSP partners, and talked about smart toy security. We also posted a follow-up about the many ways you can be scammed on … [Read more...]

Filed Under: a week in security, brute force, capella space, Christmas, cyberpunk 2077, cybersecurity, dga, egregor, medical imaging files, Microsoft, msp partners, nexus mutual, prevasio, rdp ports, smart toys, solarwinds, twitter, whatsapp

Malwarebytes Labs December 21, 2020

A week in security (December 14 – December 20)

Filed Under: a week in security, brute force, capella space, Christmas, cyberpunk 2077, cybersecurity, dga, egregor, medical imaging files, Microsoft, msp partners, prevasio, rdp ports, smart toys, solarwinds, twitter, whatsapp

Malwarebytes Labs December 17, 2020

VideoBytes: Brute force attacks increase due to more open RDP ports

Hello Folks! In this Videobyte, we’re talking about why brute force attacks are increasing and why that is a problem for everyone. The number of RDP ports exposed to the Internet grew from about three million in January 2020 to over four and a half million in March. The reason for this increase is likely the shift to working from home by many organizations during the … [Read more...]

Filed Under: brute force, rdp, VideoBytes, WFH

Pieter Arntz October 20, 2020

Brute force attacks increase due to more open RDP ports

While leaving your back door open while you are working from home may be something you do without giving it a second thought, having unnecessary ports open on your computer is a security risk that is sometimes underestimated. That’s because an open port can be subject to brute force attacks. What are brute force attacks? A brute force attack is where an attacker tries every way he can … [Read more...]

Filed Under: 2fa, attacks, brute force, compromised, credential stuffing, Exploits and vulnerabilities, hybrid brute force attack, open ports, rainbow table, ransomware, rdp, reverse brute force attack, Web threats, WFH

Jovi Umawing April 21, 2020

The passwordless present: Will biometrics replace passwords forever?

When it comes to securing your sensitive, personally identifiable information against criminals who can engineer countless ways to snatch it from under your nose, experts have long recommended the use of strong, complex passwords. Using long passphrases with combinations of numbers, letters, and symbols that cannot be easily guessed has been the de facto security guidance for more than 20 years. … [Read more...]

Filed Under: Apple, behaviometrics, biometrics, brute force, CCC, Chaos Computer Club, Dirk Engling, DNA testing, eyeDisk, facebook, facial recognition, fingerprint recognition, fingerprint scanning, Frank Rieger, gait recognition, Google, Henry Classification System, iris recognition, iris scanning, João de Barros, John Seymour, Madhusudhan R, passwords, PenTest Partners, privacy, Samsung, Samsung Galaxy, Shashidhara R, signature analysis, Sir W.J. Herschel, speaker recognition, TouchID, voice deepfake, voice recognition

Jovi Umawing January 10, 2020

Threat spotlight: Phobos ransomware lives up to its name

Ransomware has struck dead on organizations since it became a mainstream tool in cybercriminals’ belts years ago. From massive WannaCry outbreaks in 2017 to industry-focused attacks by Ryuk in 2019, ransomware’s got its hooks in global businesses and shows no signs of stopping. That includes a malware family known as Phobos ransomware, named after the Greek god of fear. Phobos is … [Read more...]

Filed Under: brute force, coveware, crysis, crysis ransomware, dharma, Dharma ransomware, disorganised crime, mfa, Multi-Factor Authorization, Phobos, Phobos NextGen, Phobos NotDharma, Phobos ransomware, raas, ransomware, Ransomware as a Service, rdp, remote desktop protocol, Server Message Block, SMB, Sodinokibi, threat spotlight, virtual private networks, vpn

Kacy Zurkus March 21, 2019

Are hackers gonna hack anymore? Not if we keep reusing passwords

Enterprises have a password problem, and it’s one that is making the work of hackers a lot easier. From credential stuffing to brute force and password spraying attacks, modern hackers don’t have to do much hacking in order to compromise internal corporate networks. Instead, they log in using weak, stolen, or otherwise compromised credentials. Take the recent case of Citrix as an example. The FBI … [Read more...]

Filed Under: brute force, credential stuffing, cybercrime, enterprise, enterprises, hackers, Hacking, password managers, password spraying, reusing passwords, weak passwords

Pieter Arntz September 21, 2018

Simple Authentication and Security Layer (SASL) vulnerabilities

Simple Authentication and Security Layer (SASL) is an authentication layer used in Internet protocols. SASL is not a protocol, but rather a framework that provides developers of applications and shared libraries with mechanisms for authentication, data integrity–checking, and encryption. Within the framework and a few of its plugins, there are a couple of known vulnerabilities that we want to make … [Read more...]

Filed Under: authentication, brute force, cybercrime, denial of service, Exploits, mailserver, sasl, Simple Authentication and Security Layer, vulnerabilities

Pieter Arntz September 14, 2018

Is two-factor authentication (2FA) as secure as it seems?

Two-factor authentication (2FA) was invented to add an extra layer of security to the—now considered old-fashioned and insecure—simple login procedure of entering a username and password. One of the most well-known examples of 2FA is when you try to log into a familiar website from a different machine or from a different location, which results in a different IP. With 2FA-enabled login procedures, … [Read more...]

Filed Under: 101, 2fa, biometrics, brute force, facebook, fake login, FYI, mfa, multi-factor authentication, password reset, phishing, Social engineering, third-party login, totp, two-factor authentication

A week in security (December 14 – December 20)

A week in security (December 14 – December 20)

VideoBytes: Brute force attacks increase due to more open RDP ports

Brute force attacks increase due to more open RDP ports

The passwordless present: Will biometrics replace passwords forever?

Threat spotlight: Phobos ransomware lives up to its name

Are hackers gonna hack anymore? Not if we keep reusing passwords

Simple Authentication and Security Layer (SASL) vulnerabilities

SEARCH

RECENT POSTS

Archives

DISCLAIMER