News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Cimpanu: Most significant security events of the 2010s

    Home Forums AskWoody blog Cimpanu: Most significant security events of the 2010s

    Tagged: 

    Viewing 2 reply threads
    • Author
      Posts
      • #2015398 Reply
        woody
        Da Boss

        Catalin Cimpanu on ZDNet has a fascinating article detailing the “most important data breaches, cyber-attacks, and malware strains of the last decade”
        [See the full post at: Cimpanu: Most significant security events of the 2010s]

        4 users thanked author for this post.
      • #2015443 Reply
        doriel
        AskWoody Lounger

        Thank you, very interesting reading. That malware part is the most interesting. It touches all of us, sometimes we dont have a clue, that we are malwared. Until we are asked for some cryptocurrency.

        Dell Latitude E6530, Intel Core i5 @ 2.6 GHz, 4GB RAM, W10 1809 Enterprise

        HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29

      • #2016068 Reply
        warrenrumak
        AskWoody Plus

        There have been many cases of targeted attacks that either use recently-released or unreleased exploits to compromise systems.  One recent one is CVE-2019-1132, whereby a known Russian espionage group took advantage of a vulnerability in the kernel to elevate privileges and take over government systems.

        The last virus attack I can think of was WannaCry, and that exploited a vulnerability in Windows that was patched about four weeks before the attack began.

        But yeah, the biggest exploit vector nowadays is long-unpatched systems, not systems that don’t have the most updated patch.  I’m sure people have heard about various U.S. government organizations being attacked with ransomware and being shut down for multiple days, e.g. City of Baltimore and Greenville, NC.  There’s been something like 100 of these this year in the United States.  The full list is here.  Generally these are a case of people not installing patches for a long period of time — years in some cases.

        It’s actually pretty stunning how sloppy a lot of people are with their IT.

        Moderator note: Multiple external links require moderation (sometimes).

        1 user thanked author for this post.
        • #2016436 Reply
          woody
          Da Boss

          People who are defending systems from targeted attacks by well-funded groups live in a different world, of course. All of the patches identified by MS as being “exploited” have been used in some way or another in the way you describe.

          But for almost everybody, patching immediately is a bad choice.

          Even the organizations that are at risk for well-funded attacks don’t patch immediately.

    Viewing 2 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Cimpanu: Most significant security events of the 2010s

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.