search for: krebsonsecur

...ou miss 'Wanacry' ??? >> >> Do not make Samba use ntlm, make XP (if you must use XP) use NTLMv2, >> see here: >> >> http://www.imss.caltech.edu/node/396 >> >> Rowland >> >> > > Did not M$ issue a patch for wanacry and xp? https://krebsonsecurity.com/2017/05/microsoft-issues-wanacrypt-patch-for-windows-8-xp/

Hello Everyone, Does anyone have any more detail about what kind of system Anthem / Blue Cross was running and what kind of attack broke into their system? It's terrible that it happened, but I think it would benefit all Admins everywhere to learn how it happened so that we can secure our systems from a similar breach of information. Anyone know? Chris

On Fri, 2015-02-06 at 08:40 -0600, mshinn wrote: > I recommend reading up on kreb's site: > > http://krebsonsecurity.com/2015/02/china-to-blame-in-anthem-hack/ > > Not sure the "hack" was an issue with their platforms per se. > > " > ?On January 27, 2015, an Anthem associate, a database administrator, > discovered suspicious activity ? a database query running using the &gt...

...ld have a infosec related mail list I think that would be a good idea. >From what I have read this morning it appears to be an APT, should know more in the coming days and weeks but most times with APT's details will be slow coming. Here are some sites that you may want to look at: http://krebsonsecurity.com/ http://securelist.com/blog/research/ http://www.csoonline.com/author/Steve-Ragan/ http://blog.crowdstrike.com/ This one will be interesting in a few weeks: http://www.csoonline.com/article/2880095/cyber-attacks-espionage/crowdstrike-demonstrates-how-attackers-wiped-the-data-from-the-machin...

...systems > from a similar breach of information. > > Anyone know? > > Chris > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos I recommend reading up on kreb's site: http://krebsonsecurity.com/2015/02/china-to-blame-in-anthem-hack/ Not sure the "hack" was an issue with their platforms per se. " ?On January 27, 2015, an Anthem associate, a database administrator, discovered suspicious activity ? a database query running using the associate?s logon information. He...

...?d like to let everyone know so they can be prepared and so forth, but we have been slowly driven to a pretty brutal policy of no [advance] disclosure,? Marquess said. ?One of our main revenue sources is support contracts, and we don?t even give them advance notice.? --- end excerpt --- <http://krebsonsecurity.com/2015/03/openssl-patch-to-plug-severe-security-holes/#more-30379> mark

If you like your dentist, *call* them, today. <http://krebsonsecurity.com/2016/04/dental-assn-mails-malware-to-members/>, and the URL says it all - they mailed a card with a USB key... and some of them have malware, and Krebs says not all virus scanners can detect it.... mark "got off the phone with my dentists' office a few minutes ago

On Sat, 19 Aug 2017 17:56:06 -0700 ToddAndMargo via samba <samba at lists.samba.org> wrote: > The cure was to add to smb.conf > > ; To operate with XP, add the following to the [global] section: > ; lanman auth = yes > ; ntlm auth = yes > lanman auth = yes > ntlm auth = yes > > Sorry, but you seem to have fixed the wrong thing ;-) Did you miss